CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Minthcm: >> Minthcm Security Vulnerabilities

CVE-2024-36656

In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected Cross-site Scripting (XSS) attack.

CVSS Score

6.1

EPSS Score

0.008

Published

2024-06-14

CVE-2021-25838

The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting (XSS) payload in file-upload.

CVSS Score

6.1

EPSS Score

0.003

Published

2021-04-26

CVE-2021-25839

A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing.

CVSS Score

9.8

EPSS Score

0.004

Published

2021-04-26

Page 1

Vulnerabilities

Vulnerable Software

Minthcm: >> Minthcm Security Vulnerabilities

Products

Pricing

Contact Us