74 matches found
CVE-2025-6923
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS.This issue affects UNIS: before 42957...
CVE-2025-6924
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software e-BAP Automation allows Reflected XSS.This issue affects e-BAP Automation: before 42957...
CVE-2025-10876
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software e-BAP Automation allows Cross-Site Scripting XSS.This issue affects e-BAP Automation: from 1.8.96 before v.41815...
EUVD-2025-202050
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in TalentSoft Software UNIS allows Reflected XSS.This issue affects UNIS: before 42957...
EUVD-2025-202152
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in TalentSoft Software e-BAP Automation allows Reflected XSS.This issue affects e-BAP Automation: before 42957...
EUVD-2025-202051
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in TalentSoft Software e-BAP Automation allows Cross-Site Scripting XSS.This issue affects e-BAP Automation: from 1.8.96 before v.41815...
EUVD-2025-202048
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TalentSoft Software UNIS allows SQL Injection.This issue affects UNIS: before 42321...
CVE-2025-6924
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software e-BAP Automation allows Reflected XSS. This issue affects e-BAP Automation: before 42957...
CVE-2025-6923
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 42957...
CVE-2025-12504
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software UNIS allows SQL Injection. This issue affects UNIS: before 42321...
CVE-2025-10876
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software e-BAP Automation allows Cross-Site Scripting XSS. This issue affects e-BAP Automation: from 1.8.96 before v.41815...
CVE-2025-12504 SQLi in Talent Software's UNIS
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software UNIS allows SQL Injection. This issue affects UNIS: before 42321...
CVE-2025-12504 SQLi in Talent Software's UNIS
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Talent Software UNIS allows SQL Injection. This issue affects UNIS: before 42321...
CVE-2025-12504
CVE-2025-12504 affects Talent Software UNIS (TalentSoft UNIS) with a SQL injection vulnerability arising from improper neutralization of special elements in SQL commands. Affected versions are prior to 42321. The issue potentially enables attacker-controlled SQL execution, with impact to confiden...
CVE-2025-6923
CVE-2025-6923 is a reflected XSS in TalentSoft UNIS/Talent Software UNIS, caused by improper input neutralization during web page generation. The issue affects UNIS versions before 42957. CVSS 3.1 base score 5.4 (MEDIUM) with Network attack vector, low confidentiality and integrity impact, no ava...
CVE-2025-6923 Reflected XSS in Talent Software's UNIS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 42957...
CVE-2025-6923 Reflected XSS in Talent Software's UNIS
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software UNIS allows Reflected XSS. This issue affects UNIS: before 42957...
CVE-2025-10876
The CVE-2025-10876 entry describes a Cross-Site Scripting (XSS) vulnerability in TalentSoft e-BAP Automation, affecting versions 1.8.96 up to (but not including) v.41815. The root cause is improper neutralization of input during web page generation. Impact is XSS with potential to affect users wh...
CVE-2025-10876 XSS in Talent Software's e-Bap
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Talent Software e-BAP Automation allows Cross-Site Scripting XSS. This issue affects e-BAP Automation: from 1.8.96 before v.41815...
CVE-2025-6924
CVE-2025-6924 affects TalentSoft e-BAP Automation. The issue is a Reflected XSS caused by improper input neutralization during web page generation in versions prior to 42957. Impact is reflected XSS in user-supplied input handled during page rendering. Remediation: upgrade to TalentSoft e-BAP Aut...