PT-2025-37996 · Code Projects · Human Resource Integrated System
Yulin Chen
·
Published
2025-09-16
·
Updated
2025-09-20
·
CVE-2025-56293
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
code-projects Human Resource Integrated System version 1.0
Description
The Human Resource Integrated System is susceptible to Cross Site Scripting (XSS) attacks. This issue affects the Add Child Information section, specifically within the
Childs Name field, and the Add Parent Information section, specifically within the Father Firstname field.Recommendations
As a mitigation, sanitize all user inputs in the
Childs Name field within the Add Child Information section.
As a mitigation, sanitize all user inputs in the Father Firstname field within the Add Parent Information section.Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Human Resource Integrated System