Description
A security vulnerability has been detected in code-projects Online Job Portal 1.0. This impacts an unknown function of the file /Admin/DetailJob.php. The manipulation leads to cross site scripting. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used.
Problem types
Product status
Timeline
| 2026-07-13: | Advisory disclosed |
| 2026-07-13: | VulDB entry created |
| 2026-07-13: | VulDB entry last update |
Credits
dazhi (VulDB User)
References
vuldb.com/vuln/378168 (VDB-378168 | code-projects Online Job Portal DetailJob.php cross site scripting)
vuldb.com/vuln/378168/cti (VDB-378168 | CTI Indicators (IOB, IOC, TTP, IOA))
vuldb.com/cve/CVE-2026-15678 (CVE-2026-15678 | CVE Analysis and Report)
vuldb.com/submit/855978 (Submit #855978 | code-projects Online Job Portal System 1.0 Improper Neutralization of Alternate XSS Syntax)
github.com/shihuizhang-dazhi/MY-CVE/issues/7
code-projects.org/