漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Multiple stored cross-site scripting (XSS) vulnerabilities in the index.php component of HR Performance Solutions Performance Pro v3.19.17 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Employee Notes, title, or description parameters. The patched version is PP-Release-6.3.2.0.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HR Performance Solutions Performance Pro 安全漏洞
Vulnerability Description
HR Performance Solutions Performance Pro是美国HR Performance公司的一款员工绩效管理平台。 HR Performance Solutions Performance Pro 3.19.17版本存在安全漏洞,该漏洞源于Employee Notes和title和description参数未正确验证输入,可能导致存储型跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A