Vulnerabilities for Human resource management software (...) - CXSECURITY.COM

Vulnerabilities for
'Human resource management software'

2018-12-20

CVE-2018-12651

CWE-79

A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Adrenalin 5.4 HRMS Software. The user supplied input containing JavaScript is echoed back in JavaScript code in an HTML response via the ShiftEmployeeSearch.aspx prntFrmName or prntDDLCntrlName parameter.

2018-10-24

CVE-2018-12650

CWE-79

Adrenalin HRMS version 5.4.0 contains a Reflected Cross Site Scripting (XSS) vulnerability in the ApplicationtEmployeeSearch page via 'prntDDLCntrlName' and 'prntFrmName'.

>>> Vendor: Myadrenalin 2 Products

Human resource management software

Copyright 2024, cxsecurity.com