Medium severity6.1NVD Advisory· Published Apr 26, 2021· Updated Jun 17, 2026
CVE-2021-25838
CVE-2021-25838
Description
The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting (XSS) payload in file-upload.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- MintHCM/MintHCMdescription
Patches
Vulnerability mechanics
References
2- github.com/C1inton/CVE-Record/blob/master/CVE%20Record/%5BCVE-2021-25838%5DMintHCM%203.0.8.mdnvdThird Party Advisory
- minthcm.orgnvdVendor Advisory
News mentions
0No linked articles in our index yet.