Vulnerabilities > Minthcm

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-26	CVE-2021-25839	Weak Password Requirements vulnerability in Minthcm 3.0.8 A weak password requirement vulnerability exists in the Create New User function of MintHCM RELEASE 3.0.8, which could lead an attacker to easier password brute-forcing. network low complexity minthcm CWE-521 critical	9.8
2021-04-26	CVE-2021-25838	Cross-site Scripting vulnerability in Minthcm 3.0.8 The Import function in MintHCM RELEASE 3.0.8 allows an attacker to execute a cross-site scripting (XSS) payload in file-upload. network low complexity minthcm CWE-79	6.1

Vulnerabilities > Minthcm {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Minthcm"}]}