Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an authenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Stored XSS.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://news.websoft.ru/_wt/wiki_base/7175851369410989446 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-12-12T00:00:00
Updated: 2024-08-03T14:47:27.602Z
Reserved: 2022-12-09T00:00:00
Link: CVE-2022-46903
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-12-12T21:15:10.433
Modified: 2024-11-21T07:31:17.053
Link: CVE-2022-46903
Redhat
No data.