Insufficient processing of user input in WebSoft HCM 2021.2.3.327 allows an authenticated attacker to inject arbitrary HTML tags into the page processed by the user's browser, including scripts in the JavaScript programming language, which leads to Reflected XSS.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://news.websoft.ru/_wt/wiki_base/7175852586100985308 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-12-12T00:00:00
Updated: 2024-08-03T14:47:27.850Z
Reserved: 2022-12-09T00:00:00
Link: CVE-2022-46906
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-12-12T21:15:10.597
Modified: 2024-11-21T07:31:17.517
Link: CVE-2022-46906
Redhat
No data.