Kronos: >> Web Time And Attendance >> 4.1.17 Security Vulnerabilities
In Kronos Web Time and Attendance (webTA) 4.1.x and later 4.x versions before 5.0, there is a Stored XSS vulnerability by setting the Application Banner input field of the /ApplicationBanner page as an authenticated administrator.
CVSS Score
6.9
EPSS Score
0.003
Published
2020-01-30