CVE-2022-25013

Published February 28th, 2022

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

Ice Hrm 30.0.0.OS was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the "key" and "fm" parameters in the component login.php.

gamonoid/icehrm

Manage your employees easily with a robust and efficient Human Resource Management System

GitHub

710