13 matches found
CVE-2025-6923
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS.This issue affects UNIS: before 42957...
EUVD-2025-202050
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in TalentSoft Software UNIS allows Reflected XSS.This issue affects UNIS: before 42957...
EUVD-2025-202048
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TalentSoft Software UNIS allows SQL Injection.This issue affects UNIS: before 42321...
CVE-2025-6923
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 42957...
CVE-2025-12504
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software UNIS allows SQL Injection. This issue affects UNIS: before 42321...
CVE-2025-12504 SQLi in Talent Software's UNIS
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software UNIS allows SQL Injection. This issue affects UNIS: before 42321...
CVE-2025-12504 SQLi in Talent Software's UNIS
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software UNIS allows SQL Injection. This issue affects UNIS: before 42321...
CVE-2025-6923 Reflected XSS in Talent Software's UNIS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 42957...
CVE-2025-6923
CVE-2025-6923 is a reflected XSS in TalentSoft UNIS/Talent Software UNIS, caused by improper input neutralization during web page generation. The issue affects UNIS versions before 42957. CVSS 3.1 base score 5.4 (MEDIUM) with Network attack vector, low confidentiality and integrity impact, no ava...
CVE-2025-6923 Reflected XSS in Talent Software's UNIS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 42957...
PT-2025-49976
Name of the Vulnerable Software and Affected Versions TalentSoft Software UNIS versions prior to 42321 Description A flaw exists in TalentSoft Software UNIS related to the improper handling of special characters within SQL queries, potentially allowing for SQL Injection. This issue could allow an...
PT-2025-49974
Name of the Vulnerable Software and Affected Versions TalentSoft UNIS versions prior to 42957 Description The software contains a Reflected Cross-Site Scripting XSS issue due to improper neutralization of input during web page generation. This allows for the injection of malicious scripts into we...
TalentSoft UNIS 跨站脚本漏洞
TalentSoft UNIS is a talent management system from TalentSoft Turkey. A cross-site scripting vulnerability exists in TalentSoft UNIS versions prior to 42957, which stems from improper input neutralization and could lead to reflective cross-site scripting...