2 matches found
CVE-2022-34133
Jorani v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the Comment parameter at application/controllers/Leaves.php...
CVE-2022-34133
CVE-2022-34133 affects Benjamin BALET Jorani v1.0. The issue is a cross-site scripting (XSS) vulnerability in the Comment parameter of application/controllers/Leaves.php. Root cause cited across sources: lack of input validation/filtering and unsafe output of user-supplied data in the Comment fie...