MidnightBSD

Advisories for applaudsolutions

CVE-2019-11033 MEDIUM

Applaud HCM 4.0.42+ uses HTML tag fields for HTML inputs in a form. This leads to an XSS vulnerability with a payload starting with the <iframe./> substring.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
applaudsolutions applaud_hcm 4.0.42+