CVE-2019-11032

Publication date

2019-04-24 14:53:49

Family

mitre

State

PUBLISHED

Description

In EasyToRecruit (E2R) before 2.11, the upload feature and the Candidate Profile Management feature are prone to Cross Site Scripting (XSS) injection in multiple locations.