Medium severity6.1NVD Advisory· Published Sep 17, 2019· Updated Jun 17, 2026
CVE-2019-11559
CVE-2019-11559
Description
A reflected Cross-site scripting (XSS) vulnerability in HRworks V 1.16.1 allows remote attackers to inject arbitrary web script or HTML via the URL parameter to the Login component.
Affected products
2- HRworks/HRworksdescription
Patches
Vulnerability mechanics
References
2- twitter.com/gpheheise/status/1173896069769519105nvdExploitThird Party Advisory
- seclists.org/fulldisclosure/2019/Sep/28nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.