5 matches found
The vulnerability of the E-Staff automation system for recruitment processes is related to errors in XML data filtering during document printing, allowing a perpetrator to execute arbitrary commands.
The vulnerability of the E-Staff recruitment process automation system is related to errors in XML data filtering during document printing. Exploiting this vulnerability allows a malicious actor to remotely execute arbitrary commands by sending a specially crafted XML document...
The vulnerability of the E-Staff automation system for recruitment processes is related to errors in data filtering when fields of objects are changed. This allows a perpetrator to execute arbitrary commands.
The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering when fields of objects are modified. Exploiting this vulnerability allows a malicious actor to bypass security measures and execute arbitrary commands by writing web slugs...
The vulnerability of the E-Staff automated recruitment process system, related to errors in data filtering during object updates, allows a perpetrator to execute arbitrary JavaScript code.
The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering during object updates. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code remotely...
The vulnerability of the E-Staff automated recruitment process system, related to data filtering errors, allows a perpetrator to compromise the integrity and accessibility of the protected information.
The vulnerability of the E-Staff recruitment automation system is related to errors in data filtering. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity and accessibility of the protected information...
PT-2024-41186 · Ооо 'Датэкс Софтвер' · E-Staff
Уязвимость системы автоматизации рекрутинговых процессов E-Staff связана с ошибками фильтрации данных при получении информации об объекте. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, получить несанкционированный доступ к защищаемой информации...