Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/01/12 11:28 a.m.6 views

CVE-2025-40977 Multiple vulnerabilities in WorkDo products

Stored Cross-Site Scripting XSS vulnerability in WorkDo's eCommerceGo SaaS, consisting of a lack of proper validation of user input by sending a POST request to ‘/store-ticket’, using the ‘subject’ and ‘description’ parameters...

5.1CVSS5AI score0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/12 11:28 a.m.23 views

CVE-2025-40977 Multiple vulnerabilities in WorkDo products

Stored Cross-Site Scripting XSS vulnerability in WorkDo's eCommerceGo SaaS, consisting of a lack of proper validation of user input by sending a POST request to ‘/store-ticket’, using the ‘subject’ and ‘description’ parameters...

5.1CVSS0.00251EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/12 12:0 a.m.10 views

PT-2026-1800

Name of the Vulnerable Software and Affected Versions WorkDo eCommerceGo affected versions not specified Description A stored Cross-Site Scripting XSS issue exists due to insufficient validation of user-supplied data. The issue is triggered by sending a POST request to the /store-ticket API...

5.1CVSS5.9AI score0.00251EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/01/12 12:0 a.m.7 views

WorkDo HRMGo 跨站脚本漏洞

WorkDo HRMGo is a human resource management platform from WorkDo Inc. in the United States. WorkDo HRMGo suffers from a cross-site scripting vulnerability that stems from insufficient validation of user input for the subject and description parameters when sending a POST request to /store-ticket,...

5.1CVSS5.8AI score0.00251EPSS
Exploits0References1
Rows per page
Query Builder