VYPR
Vendor

MintHCM

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2021-25839CriApr 26, 2021
    risk 0.64cvss 9.8epss 0.01

    A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing.

  • CVE-2024-36656MedJun 14, 2024
    risk 0.40cvss 6.1epss 0.00

    In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting (XSS) attack.

  • CVE-2021-25838MedApr 26, 2021
    risk 0.40cvss 6.1epss 0.01

    The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting (XSS) payload in file-upload.