Add Employee Handler is a component of the system that allows the management of employees by departments and areas. When information is entered into this component, it can be used to create a specially crafted request thus increasing the risk of being exploited. In case of a request involving the manipulation of First Name/Middle Name/Last Name the component may result in a cross site scripting issue. Add Employee Handler is a component of the system that allows the management of employees by departments and areas. When information is entered into this component, it can be used to create a specially crafted request thus increasing the risk of being exploited. In case of a request involving the manipulation of First Name/Middle Name/Last Name the component may result in a cross site scripting issue. The vulnerability can be exploited by remote attackers without requiring any user interaction. An attacker needs to inject malicious code in the form of a script in the request sent to the component. Add Employee Handler is a component of the system that allows the management of employees by departments and areas. When information is entered into this component, it can be used to create a specially crafted request thus increasing the risk of being exploited. In case of a request involving the manipulation of First Name/Middle Name/Last Name the component may result in a cross site scripting issue

Details

Add Employee Handler is a component of the system that allows the management of employees by departments and areas. When information is entered into this component, it can be used to create a specially crafted request thus increasing the risk of being exploited. In case of a request involving the manipulation of First Name/Middle Name/Last Name the component may result in a cross site scripting issue. The vulnerability can be exploited by remote attackers without requiring any user interaction. An attacker needs to inject malicious code in the form of a script in the request sent to the component.

Products Affected

Add Employee Handler is used by the following products:
42.2, 42.3, 42.4, 42.5, 42.6, 42.7, 42.8

Vulnerability Analysis

Add Employee Handler is a component of the system that allows the management of employees by departments and areas. When information is entered into this component, it can be used to create a specially crafted request thus increasing the risk of being exploited. In case of a request involving the manipulation of First Name/Middle Name/Last Name the component may result in a cross site scripting issue. The vulnerability can be exploited by remote attackers without requiring any user interaction. An attacker needs to inject malicious code in the form of a script in the request sent to the component. Add Employee Handler is a component of the system that allows the management of employees by departments and areas. When information is entered into this component, it can be used to create a specially crafted request thus increasing the risk of being exploited. In case of a request involving the manipulation of First Name/Middle Name/Last Name the component may result in a cross site scripting issue

Timeline

Published on: 10/13/2022 16:15:00 UTC
Last modified on: 10/14/2022 14:38:00 UTC

References