9 matches found
EUVD-2025-201943
A stored Cross Site Scripting XSS vulnherability in the bulletin board SchwarzeBrett in adata Software GmbH Mitarbeiter Portal 2.15.2.0 allows remote authenticated users to execute arbitrary JavaScript code in the web browser of other users via manipulation of the 'Inhalt' parameter of the...
CVE-2025-61074
A stored Cross Site Scripting XSS vulnerability in the bulletin board SchwarzeBrett in adata Software GmbH Mitarbeiter Portal 2.15.2.0 allows remote authenticated users to execute arbitrary JavaScript code in the web browser of other users via manipulation of the 'Inhalt' parameter of the...
CVE-2025-61074
A stored Cross Site Scripting XSS vulnerability in the bulletin board SchwarzeBrett in adata Software GmbH Mitarbeiter Portal 2.15.2.0 allows remote authenticated users to execute arbitrary JavaScript code in the web browser of other users via manipulation of the 'Inhalt' parameter of the...
PT-2025-49988
Name of the Vulnerable Software and Affected Versions adata Software GmbH Mitarbeiter Portal version 2.15.2.0 Description A stored Cross Site Scripting XSS issue exists in the bulletin board SchwarzeBrett component. This allows a remote authenticated user to execute arbitrary JavaScript code with...
adata Mitarbeiter Portal 安全漏洞
adata Mitarbeiter Portal is an employee self-service and human resource management platform from adata Germany. A security vulnerability exists in adata Mitarbeiter Portal version 2.15.2.0, which stems from improper neutralization of the bulletin board parameter Inhalt and could lead to a stored...
adata Mitarbeiter Portal 安全漏洞
adata Mitarbeiter Portal is an employee self-service and human resource management platform from adata Germany. A security vulnerability exists in adata Mitarbeiter Portal version 2.15.2.0, which stems from improper access control and could lead to the execution of administrative functions and...
CVE-2025-61074
A stored Cross Site Scripting XSS vulnerability in the bulletin board SchwarzeBrett in adata Software GmbH Mitarbeiter Portal 2.15.2.0 allows remote authenticated users to execute arbitrary JavaScript code in the web browser of other users via manipulation of the 'Inhalt' parameter of the...
CVE-2025-61074
Affected product: adata Software GmbH Mitarbeiter Portal 2.15.2.0 (SchwarzeBrett bulletin board). Vulnerability: Stored XSS in the Inhalts parameter of CreateNachricht and EditNachricht endpoints, exploitable by remote authenticated users to run arbitrary JavaScript in other users’ browsers. Impa...
CVE-2025-61074
A stored Cross Site Scripting XSS vulnerability in the bulletin board SchwarzeBrett in adata Software GmbH Mitarbeiter Portal 2.15.2.0 allows remote authenticated users to execute arbitrary JavaScript code in the web browser of other users via manipulation of the 'Inhalt' parameter of the...