Description
Multiple cross-site scripting (XSS) vulnerabilities in NCT Jobs Portal Script allow remote attackers to inject arbitrary web script or HTML via the (1) search, (2) Keywords, (3) Tags, or (4) Desired City field.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Sid3^effects · textwebappsphp
https://www.exploit-db.com/exploits/12370
References (3)
Core 3
Core References
Exploit x_refsource_misc
http://packetstormsecurity.org/1004-exploits/nctjobsportal-sqlxss.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/58081
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/12370
Scores
EPSS
0.0102
EPSS Percentile
77.3%
Details
CWE
CWE-79
Status
published
Products (1)
ncrypted/nct_jobs_portal_script
Published
Apr 29, 2010
Tracked Since
Feb 18, 2026