| Title | Pbrong hrms 1.0.1 Stored Cross Site Scripting Vulnerability |
|---|
| Description | Pbrong/hrms has a Stored Cross Site Scripting vulnerability. This vulnerability is due to the fact that the UpdateRecruitmentById function under hrms1.0.1/handler/recruitment.go does not filter the parameters passed by the user, resulting in the system being able to parse javascript and S Tored Cross Site Scripting vulnerability. |
|---|
| Source | ⚠️ https://github.com/TheLiao233/cve/issues/1 |
|---|
| User | Guozhao Liao (UID 94408) |
|---|
| Submission | 01/12/2026 10:14 (5 months ago) |
|---|
| Moderation | 01/18/2026 21:32 (6 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 341755 [pbrong hrms 1.0.1 /handler/recruitment.go UpdateRecruitmentById cross site scripting] |
|---|
| Points | 19 |
|---|