Sourcecodester · Sourcecodester Human Resource Management System · CVE-2022-3497
**Name of the Vulnerable Software and Affected Versions**
SourceCodester Human Resource Management System version 1.0
**Description**
A vulnerability was found in the Master List component, where the manipulation of the `city`, `state`, `country`, or `position` argument leads to cross-site scripting. This issue can be exploited remotely.
**Recommendations**
For SourceCodester Human Resource Management System version 1.0, consider restricting the input for the `city`, `state`, `country`, and `position` arguments to prevent cross-site scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.