7 matches found
Synel Eharmonynew 跨站脚本漏洞
Synel Eharmonynew is a time and attendance system from Synel Israel. A security vulnerability exists in Synel Eharmonynew. An attacker could exploit this vulnerability to conduct cross-site scripting attacks...
Synel Eharmonynew 路径遍历漏洞
Synel Eharmonynew is an attendance system from Synel Israel. Synel Eharmonynew suffers from a path traversal vulnerability that could allow an attacker to return to the root directory and open host files...
Synel Eharmonynew 跨站脚本漏洞
Synel Eharmonynew is an attendance system from Synel Israel. Synel Eharmonynew suffers from a cross-site scripting vulnerability that allows an attacker to inject JS code into the comments field and could lead to potential cookie theft, HTML markup, and JS code being loaded into the system...
CVE-2021-36718
SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data Employee name, Employee ID number, Working hours etc' The vulnerabilety has been addressed and fixed on version 11. Default credentials ,...
Default credentials
SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data Employee name, Employee ID number, Working hours etc' The vulnerabilety has been addressed and fixed on version 11. Default credentials ,...
CVE-2021-36718 SYNEL - eharmonynew / Synel Reports version 8.0.2 Default credentials , Security miscommunication , Sensetive data exposure
SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data Employee name, Employee ID number, Working hours etc' The vulnerabilety has been addressed and fixed on version 11. Default credentials ,...
CVE-2021-36718
CVE-2021-36718 affects SYNEL eharmonynew and Synel Reports. Public docs confirm an authentication issue where attackers can log in with default credentials to export reports containing sensitive data (employee name, ID, hours worked). Affected versions include Synel eharmonynew prior to version 1...