CVE-2025-67916

Name of the Vulnerable Software and Affected Versions Astoundify Jobify versions through 4.3.0

Description The software contains a flaw related to improper input handling during web page generation, specifically a Reflected Cross-site Scripting (XSS) issue. This allows for the injection of malicious scripts into web pages viewed by users. The vulnerability exists due to insufficient sanitization of user-supplied input before it is included in the generated web page. This could potentially allow an attacker to execute arbitrary JavaScript code in the context of a user's browser.

Recommendations Versions prior to and including 4.3.0 should be updated.