Loading market data...
← Back to CVE feed

CVE-2026-12129

LOW CVSS 3.5 View on NVD ↗

Description

A vulnerability was identified in CodeAstro Human Resource Management System 1.0. Affected by this issue is some unknown functionality of the file /dashboard/add_tod of the component Dashboard Interface. The manipulation of the argument todo_data leads to cross site scripting. The attack may be initiated remotely. The exploit is publicly available and might be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Published: Jun 12, 2026 21:16 UTC Modified: Jun 12, 2026 21:16 UTC