VYPR
Medium severity6.1NVD Advisory· Published Mar 19, 2024· Updated Jun 17, 2026

CVE-2024-2633

CVE-2024-2633

Description

A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/sitetest/english/dumpenv.jsp' is vulnerable to XSS attack by 'lang' query, i.e. '/sitetest/english/dumpenv.jsp?snoop=yes&lang=%27%3Cimg%20src/onerror=alert(1)%3E&params'.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • Cegid/HRllm-create
    Range: <=819.001.022

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.