Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an unauthenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Reflected XSS.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://news.websoft.ru/_wt/wiki_base/7175852393019676262 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-12-12T00:00:00
Updated: 2024-08-03T14:47:27.730Z
Reserved: 2022-12-09T00:00:00
Link: CVE-2022-46905
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-12-12T21:15:10.543
Modified: 2024-11-21T07:31:17.367
Link: CVE-2022-46905
Redhat
No data.