{"id":9608,"date":"2025-08-03T01:48:58","date_gmt":"2025-08-03T01:48:58","guid":{"rendered":"http:\/\/localhost\/?p=9608"},"modified":"2025-08-03T01:48:58","modified_gmt":"2025-08-03T01:48:58","slug":"code-projects-human-resource-integrated-system-actionphp-cross-site-scripting","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=9608","title":{"rendered":"code-projects Human Resource Integrated System action.php cross site scripting"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\ncode-projects Human Resource Integrated System action.php cross site scripting<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-08-03T06:02:05.573Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-08-03T06:02:05.573Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
Product<\/th>\nHuman Resource Integrated System<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n5.1 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:P\/VC:N\/VI:L\/VA:N\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA cross-site scripting (XSS) vulnerability in the action.php file of Human Resource Integrated System version 1.0 allows remote attackers to inject malicious scripts. This could lead to session hijacking or unauthorized actions on the system.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
AI Product<\/th>\nHuman Resource Integrated System<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n