Websoft Vulnerabilities and Security Issues — up to date CVE List

cve

CVE-2004-0625

SQL injection vulnerability in Infinity WEB 1.0 allows remote attackers to bypass authentication and gain privileges via the login page.

8.5AI Score

0.002EPSS

2004-12-06 05:00 AM

24

cve

CVE-2022-46903

Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an authenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Stored XSS.

5.4CVSS

5.3AI Score

0.001EPSS

2022-12-12 09:15 PM

31

cve

CVE-2022-46904

Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an authenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Self-XSS.

5.4CVSS

5.3AI Score

0.001EPSS

2022-12-12 09:15 PM

26

cve

CVE-2022-46905

Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an unauthenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Reflected XSS.

6.1CVSS

6.2AI Score

0.001EPSS

2022-12-12 09:15 PM

28

cve

CVE-2022-46906

Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an authenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Reflected XSS.

5.4CVSS

5.4AI Score

0.001EPSS

2022-12-12 09:15 PM

24

Websoft Security Vulnerabilities