Reflected Cross Site Scripting (XSS) Vulnerability in Adrenalin 5.4.0 HRMS Software via flexiportal/GeneralInfo.aspx strAction Parameter

Reflected Cross Site Scripting (XSS) Vulnerability in Adrenalin 5.4.0 HRMS Software via flexiportal/GeneralInfo.aspx strAction Parameter

CVE-2018-12234 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Adrenalin 5.4.0 HRMS Software. The user supplied input containing JavaScript is echoed back in JavaScript code in an HTML response via the flexiportal/GeneralInfo.aspx strAction parameter.

Learn more about our User Device Pen Test.