N/A

A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Adrenalin 5.4 HRMS Software. The user supplied input containing JavaScript is echoed back in JavaScript code in an HTML response via the ShiftEmployeeSearch.aspx prntFrmName or prntDDLCntrlName parameter.

N/A

N/A

Adrenalin HRMS Software 跨站脚本漏洞

Adrenalin HRMS Software是印度Adrenalin eSystems公司的一套人力资源管理系统。 Adrenalin HRMS Software 5.4版本中存在跨站脚本漏洞。远程攻击者可通过向ShiftEmployeeSearch.aspx URL发送‘prntFrmName’或‘prntDDLCntrlName’参数利用该漏洞执行JavaScript代码。

N/A

N/A