26 matches found
EUVD-2021-12719
Malware in sbrugna...
EUVD-2021-12720
Malware in sbrugna...
CVE-2024-36656
In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting XSS attack...
CVE-2021-25838
The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting XSS payload in file-upload...
CVE-2021-25839
A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing...
CVE-2024-36656
In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting XSS attack...
CVE-2024-36656
In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting XSS attack...
CVE-2024-36656
MintHCM 4.0.3 is affected by a reflected Cross-site Scripting (XSS) vulnerability in which a registered user can execute arbitrary JavaScript. The issue originates from MintHCM 4.0.3 and is described across multiple sources as enabling a registered user to inject and run JavaScript, leading to XS...
CVE-2024-36656
In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting XSS attack...
MINTHCM security breach
MINTHCM is a MINTHCM open source application. A human resource management software A security vulnerability exists in MINTHCM version 4.0.3, which originated from allowing registered users to execute arbitrary JavaScript code and conduct cross-site scripting attacks...
CVE-2024-36656
In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting XSS attack...
PT-2024-27108 · Minthcm · Minthcm
Name of the Vulnerable Software and Affected Versions: MintHCM version 4.0.3 Description: A reflected Cross-site Scripting XSS attack can be achieved by a registered user, allowing the execution of arbitrary JavaScript code. Recommendations: For MintHCM version 4.0.3, at the moment, there is no...
MINTHCM Weak Password Requirement Vulnerability
MINTHCM is a MINTHCM open source application. A human resource management software. A weak password requirement vulnerability exists in the Create New User function in MintHCM RELEASE version 3.0.8, which can be exploited by an attacker to brute-force password cracking...
MintHCM Cross-Site Scripting Vulnerability
MINTHCM is a human resources management software developed by MINTHCM MintHCM A cross-site scripting vulnerability exists in version 3.0.8. The vulnerability stems from the Import feature that allows an attacker to perform cross-site scripting XSS loads in file uploads, which can be exploited by ...
CVE-2021-25839
A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing...
CVE-2021-25838
The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting XSS payload in file-upload...
CVE-2021-25838
The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting XSS payload in file-upload...
CVE-2021-25839
A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing...
Design/Logic Flaw
A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing...
Cross site scripting
The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting XSS payload in file-upload...