Applaud HCM 4.0.42+ uses HTML tag fields for HTML inputs in a form. This leads to an XSS vulnerability with a payload starting with the <iframe./> substring.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-05-16T14:56:59

Updated: 2024-08-04T22:40:15.943Z

Reserved: 2019-04-09T00:00:00

Link: CVE-2019-11033

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-05-16T15:29:01.397

Modified: 2024-11-21T04:20:24.480

Link: CVE-2019-11033

cve-icon Redhat

No data.