3 matches found
CVE-2023-45540
An issue in Jorani Leave Management System 1.0.3 allows a remote attacker to execute arbitrary HTML code via a crafted script to the comment field of the List of Leave requests page...
CVE-2023-45540
An issue in Jorani Leave Management System 1.0.3 allows a remote attacker to execute arbitrary HTML code via a crafted script to the comment field of the List of Leave requests page...
CVE-2023-45540
CVE-2023-45540 affects Jorani Leave Management System version 1.0.3. A cross-site scripting vulnerability exists in the comment field on the List of Leave requests page due to incorrect input validation, enabling a remote attacker to inject arbitrary HTML. Root cause: inadequate sanitization of u...