CVE-2024-4657 Strored XSS in Talent Software's BAP Automation

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software BAP Automation allows Stored XSS. This issue affects BAP Automation: before 30840...

PT-2024-32048 · Talent · Talent Software Bap Automation

Name of the Vulnerable Software and Affected Versions: Talent Software BAP Automation versions before 30840 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Stored XSS, enabling attackers to...

Talent BAP Automation 跨站脚本漏洞

Talent BAP Automation is an application from Talent, Inc. A cross-site scripting vulnerability exists in Talent BAP Automation versions prior to 30840, which stems from improper input neutralization during web page generation, making it susceptible to stored cross-site scripting attacks...