Hi all,
I have found XSS issue in version 1.6 of JR. User dashboard is affected. The JS code can be injected via "message" GET parameter.
Example URL: somejobsite.com/dashboard/?message=<script...
XSS issue in JobRoller 1.6
Hi all,
I have found XSS issue in version 1.6 of JR. User dashboard is affected. The JS code can be injected via "message" GET parameter.
Example URL: somejobsite.com/dashboard/?message=<script...
