CVE-2020-29053

CVE-2020-29053

EPSS 0.7%

HRSALE 2.0.0 allows XSS via the admin/project/projects_calendar set_date parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://grimthereaperteam.medium.com/hrsale-v-2-0-0-reflected-cross-site-scripting-17a5617e2c6e https://hrsale.com/update_log.php