Filtered by vendor Staff Appraisal System
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-42915 | 1 Staff Appraisal System | 1 Staff Appraisal System | 2024-08-23 | 8 High |
A host header injection vulnerability in Staff Appraisal System v1.0 allows attackers to obtain the password reset token via user interaction with a crafted password reset link. This will allow attackers to arbitrarily reset other users' passwords and compromise their accounts. |
Page 1 of 1.