Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/04/27 12:30 a.m.31 views

CVE-2026-7071 CodeAstro Online Job Portal user-cvs file information disclosure

A security vulnerability has been detected in CodeAstro Online Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /users/user-cvs/. The manipulation leads to file and directory information exposure. Remote exploitation of the attack is possible. The exploit has...

6.9CVSS0.0038EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/09/25 5:47 p.m.6 views

CVE-2025-48869

Horilla is a free and open source Human Resource Management System HRMS. Unauthenticated users can access uploaded resume files in Horilla 1.3.0 by directly guessing or predicting file URLs. These files are stored in a publicly accessible directory, allowing attackers to retrieve sensitive...

7.5CVSS6.4AI score0.00407EPSS
Exploits1References1
NVD
NVD
added 2025/09/24 6:15 p.m.5 views

CVE-2025-48869

Horilla is a free and open source Human Resource Management System HRMS. Unauthenticated users can access uploaded resume files in Horilla 1.3.0 by directly guessing or predicting file URLs. These files are stored in a publicly accessible directory, allowing attackers to retrieve sensitive...

7.5CVSS0.00407EPSS
Exploits1References1
OSV
OSV
added 2022/04/04 4:15 p.m.5 views

CVE-2022-1166

The JobMonster Theme was vulnerable to Directory Listing in the /wp-content/uploads/jobmonster/ folder, as it did not include a default PHP file, or .htaccess file. This could expose personal data such as people's resumes. Although Directory Listing can be prevented by securely configuring the we...

5.3CVSS5.8AI score0.01528EPSS
Exploits1References2
Rows per page
Query Builder