Multiple cross-site scripting (XSS) vulnerabilities in jobseekers/forgot.php in Diesel Job Site allow remote attackers to inject arbitrary web script or HTML via the (1) uname or (2) SEmail parameters.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Diesel_job_site | Dieselscripts | * | * |