CVE-2022-25015
CVE-2022-25015 describes a stored XSS vulnerability in Ice Hrm 30.0.0.OS. The issue arises from insufficient input filtering in the First Name field, allowing a crafted payload to be stored and later executed to exfiltrate cookies. Impact is cookie theft via compromised user input. Multiple conne...