CVE-2025-69085

Name of the Vulnerable Software and Affected Versions e-plugins JobBank versions through 1.2.2

Description The software contains a flaw due to improper handling of user-supplied data when creating web pages, leading to a Reflected Cross-Site Scripting (XSS) condition. This allows an attacker to inject malicious scripts into a web page viewed by other users. The vulnerable component is susceptible to exploitation through crafted input. The API endpoint and vulnerable parameters are not specified.

Recommendations Update e-plugins JobBank to a version later than 1.2.2.