4 matches found
Icon Time Systems RTC-1000 Firmware 2.5.7458 - Cross-Site Scripting Vulnerability
Exploit for hardware platform in category web applications Exploit Title: Icon Time Systems RTC-1000 alert"xss"; ========================================================== PROOF OF CONCEPT - With valid credentials that has permissions to modify the employee records, access the employeelist...
CVE-2017-16819
A stored cross-site scripting vulnerability in the Icon Time Systems RTC-1000 v2.5.7458 and earlier time clock allows remote attackers to inject arbitrary JavaScript in the nameFirst aka First Name field for the employee details page /employee.html that is then reflected in multiple pages where...
CVE-2017-16819
The CVE-2017-16819 vulnerability affects Icon Time Systems RTC-1000 firmware v2.5.7458 and earlier. It is a stored cross-site scripting flaw in the nameFirst (First Name) field on the employee.html page, which is reflected on multiple pages where that field is used. The underlying impact is sessi...
Icon Time Systems RTC-1000 Firmware 2.5.7458 - Cross-Site Scripting
Exploit Title: Icon Time Systems RTC-1000 alert"xss"; ========================================================== PROOF OF CONCEPT - With valid credentials that has permissions to modify the employee records, access the employeelist.html page via Lists-Employees...