CVE-2025-60932 | HR Performance Solutions Performance Pro 3.19.17 cross site scripting

Inserito da Angelo Barbosa | Ott 21, 2025 | CVE

A vulnerability classified as problematic has been found in HR Performance Solutions Performance Pro 3.19.17. This affects an unknown function. Performing manipulation of the argument Goal Name/Goal Notes/Action Step Name/Action Step Description/Note Name/Goal Description results in cross site scripting.

This vulnerability is cataloged as CVE-2025-60932. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-60932 | HR Performance Solutions Performance Pro 3.19.17 cross site scripting

Post correlati

CVE-2024-7200 | SourceCodester Complaints Report Management System 1.0 ajax.php name cross site scripting

CVE-2024-51980 | Printer Web Service server-side request forgery

CVE-2024-0967 | OpenText ArcSight Enterprise Security Manager up to 24.0 information disclosure

CVE-2023-6334 | HYPR Workforce Access up to 8.6 on Windows memory corruption