Vulnerabilities > Harriscomputer

DATE	CVE	VULNERABILITY TITLE	RISK
2020-03-25	CVE-2019-18626	Information Exposure vulnerability in Harriscomputer Ormed MIS Harris Ormed Self Service before 2019.1.4 allows an authenticated user to view W-2 forms belonging to other users via an arbitrary empNo value to the ORMEDMIS/Data/PY/T4W2Service.svc/RetrieveW2EntriesForEmployee URI, thus exposing sensitive information including employee tax information, social security numbers, home addresses, and more. network low complexity harriscomputer CWE-200	4.0

Vulnerabilities > Harriscomputer {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Harriscomputer"}]}