CNNVD-202512-1262 Information
Dec 09, 2025
cve
CNNVD ID
CNNVD-202512-1262
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
TalentSoft e-BAP Automation是土耳其TalentSoft公司的一个企业管理自动化平台。 TalentSoft e-BAP Automation 42957之前版本存在跨站脚本漏洞,该漏洞源于输入中和不当,可能导致反射型跨站脚本攻击。
Description (English)
TalentSoft e-BAP Automation is an enterprise management automation platform for TalentSoft in Turkey. The pre-TalentSoft e-BAP Automation 42957 version had a cross-site script loophole, which originated in inappropriate input and could lead to a reflective cross-site script attack.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
TalentSoft
Published
2025-12-09
Last Modified
2026-02-24
References
https://www.usom.gov.tr/bildirim/tr-25-0434
Patch
https://www.talentyazilim.com/ebap_otomasyon/
Share on: