CVE-2014-100021 in OrangeHRM정보

요약

\~에 의해 MITRE

Cross-site scripting (XSS) vulnerability in symfony/web/index.php/pim/viewEmployeeList in OrangeHRM before 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the empsearch[employee_name][empId] parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

예약하다

2015. 01. 13.

모더레이션

수락

항목

VDB-73611

EPSS

0.01220

출처

Do you need the next level of professionalism?

Upgrade your account now!