VYPR

HRworks

by HRworks

CVEs (2)

  • CVE-2019-11559MedSep 17, 2019
    risk 0.40cvss 6.1epss 0.01

    A reflected Cross-site scripting (XSS) vulnerability in HRworks V 1.16.1 allows remote attackers to inject arbitrary web script or HTML via the URL parameter to the Login component.

  • CVE-2019-16416MedOct 8, 2019
    risk 0.35cvss 5.4epss 0.01

    HRworks 3.36.9 allows XSS via the purpose of a travel-expense report.