Minthcm Minthcm
3 CVEs affecting Minthcm Minthcm. Latest disclosed: 2024-06-14. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-25839 | Critical | 9.8 | 2021-04-26 | A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brut… |
CVE-2024-36656 | Medium | 6.1 | 2024-06-14 | In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting (XSS) attack. |
CVE-2021-25838 | Medium | 6.1 | 2021-04-26 | The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting (XSS) payload in file-upload. |