EUVD-2022-46063

Malicious code in bioql PyPI...

CVE-2022-25228

CandidATS Version 3.0.0 Beta allows an authenticated user to inject SQL queries in '/index.php?m=settings=show' via the 'userID' parameter, in '/index.php?m=candidates=show' via the 'candidateID', in '/index.php?m=joborders=show' via the 'jobOrderID' and '/index.php?m=companies=show' via the...

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

The vulnerability of the OpenCATS personnel recruitment system lies in the lack of measures to protect the website structure, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the OpenCATS personnel recruitment system management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using the joborderID parameter...

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

CVE-2022-43014

OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting XSS vulnerability via the joborderID parameter...

OpenCats 跨站脚本漏洞

OpenCats is an open source recruitment process management system. A security vulnerability exists in OpenCats version v0.9.6, which stems from the fact that an attacker can implement reflective cross-site scripting using its joborderID parameter. No detailed vulnerability details are available at...