Unknown · Complete Online Job Search System · CVE-2022-35162
**Name of the Vulnerable Software and Affected Versions**
Complete Online Job Search System version 1.0
**Description**
A cross-site scripting (XSS) issue was found in the CATEGORY parameter at the "/category/controller.php?action=edit" API endpoint. This allows for potential malicious script execution.
**Recommendations**
For Complete Online Job Search System version 1.0, consider restricting access to the `CATEGORY` parameter in the "/category/controller.php?action=edit" endpoint until a fix is available. As a temporary workaround, avoid using the `CATEGORY` parameter in this endpoint to minimize the risk of exploitation.