274 matches found
Cross site scripting
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...
Cross site scripting
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the entriesPerPage parameter...
Cross site scripting
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the indexFile component...
Cross site scripting
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the email parameter in the Check Email function...
Sql injection
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tagid variable in the Tag update function...
Sql injection
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the entriesPerPage variable...
Remote code execution
OpenCATS v0.9.6 was discovered to contain a remote code execution RCE vulnerability via the getDataGridPager's ajax functionality...
Sql injection
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tagid variable in the Tag deletion function...
Cross site scripting
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the callback component...
Sql injection
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function...
CVE-2022-43014
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...
CVE-2022-43016
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the callback component...
CVE-2022-43014
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...
CVE-2022-43022
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tagid variable in the Tag deletion function...
CVE-2022-43016
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the callback component...
CVE-2022-43020
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tagid variable in the Tag update function...
CVE-2022-43020
CVE-2022-43020 concerns OpenCATS v0.9.6 with a SQL injection in the tag_id variable within the Tag update function. The CVE entry notes a network-exposed vulnerability with Low attack complexity and Low privileges required, but no user interaction, and it has a High impact on confidentiality (C: ...
CVE-2022-43021
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the entriesPerPage variable...
CVE-2022-43023
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function...
OpenCats 跨站脚本漏洞
OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.6, which stems from the fact that an attacker can implement reflective cross-site scripting using its joborderID parameter. No detailed vulnerability details are available at...