Medium severity6.1NVD Advisory· Published Jun 14, 2024· Updated Jun 17, 2026
CVE-2024-36656
CVE-2024-36656
Description
In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting (XSS) attack.
Affected products
2- MintHCM/MintHCMdescription
Patches
Vulnerability mechanics
References
1- github.com/minthcm/minthcm/issues/67nvdExploitIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.