CVE-2025-0961

Name of the Vulnerable Software and Affected Versions code-projects Job Recruitment version 1.0

Description A problematic issue has been found in the file / parse/load job-details.php, where the manipulation of the business stream name and company website url arguments leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Recommendations For code-projects Job Recruitment version 1.0, consider restricting access to the parse/load job-details.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the business stream name and company website url arguments in the affected file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.