7 matches found
CVE-2026-38569
HireFlow v1.2 is vulnerable to Cross Site Scripting XSS in candidatedetail.html via the Resume or Feedback Comment fields via POST /candidates/add or POST /feedback/add...
EUVD-2026-29117
HireFlow v1.2 is vulnerable to Cross Site Scripting XSS in candidatedetail.html via the Resume or Feedback Comment fields via POST /candidates/add or POST /feedback/add...
HireFlow 跨站脚本漏洞
HireFlow is an online interview management platform developed by StratonWebDesigners as a personal developer project. Version 1.2 of HireFlow contains a cross-site scripting vulnerability. This vulnerability stems from the Resume or Feedback Comment fields in the candidatedetail.html file, where...
CVE-2025-8174
A vulnerability was found in code-projects Voting System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/candidatesadd.php. The manipulation of the argument photo leads to unrestricted upload. The attack may be launched remotely. The exploit...
Code-Projects Voting System 代码问题漏洞
Code-Projects Voting System is a Code-Projects open source election system. A code issue vulnerability exists in Code-Projects Voting System version 1.0, which stems from an unlimited upload due to the parameter photo in file /admin/candidatesadd.php...
CVE-2025-7152
A vulnerability classified as critical has been found in Campcodes Advanced Online Voting System 1.0. Affected is an unknown function of the file /admin/candidatesadd.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack remotely. The exploi...
CampCodes Advanced Online Voting System 安全漏洞
CampCodes Advanced Online Voting System is an advanced online voting system from CampCodes, Inc. A security vulnerability exists in version 1.0 of the CampCodes Advanced Online Voting System that stems from incorrect manipulation of the parameter photo in the file /admin/candidatesadd.php, which...