CVE-2025-60933 | HR Performance Solutions Performance Pro 3.19.17 cross site scripting

Inserito da Angelo Barbosa | Ott 21, 2025 | CVE

A vulnerability described as problematic has been identified in HR Performance Solutions Performance Pro 3.19.17. The impacted element is an unknown function. Such manipulation of the argument Goal Name/Goal Notes/Action Step Name/Action Step Description/Note Name/Goal Description leads to cross site scripting.

This vulnerability is listed as CVE-2025-60933. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2025-60933 | HR Performance Solutions Performance Pro 3.19.17 cross site scripting

Post correlati

CVE-2025-4941 | PHPGurukul Credit Card Application Management System 1.0 /admin/index.php Username sql injection

CVE-2024-11257 | 1000 Projects Beauty Parlour Management System 1.0 forgot-password.php email sql injection

CVE-2024-31121 | WP Site Care HeartThis Plugin up to 0.1.0 on WordPress cross site scripting

CVE-2025-0635 | M-Files Server up to 24.11 allocation of resources