Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an authenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Self-XSS.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://news.websoft.ru/_wt/wiki_base/7175852133775323458 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-12-12T00:00:00
Updated: 2024-08-03T14:47:27.652Z
Reserved: 2022-12-09T00:00:00
Link: CVE-2022-46904
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-12-12T21:15:10.493
Modified: 2024-11-21T07:31:17.210
Link: CVE-2022-46904
Redhat
No data.