Nolan B. KennedyJan 20, 20201 minCVE-2020-8496: Stored XSS in Kronos Web Time and Attendance (webTA) 4.1.xOverview This advisory addresses a Stored XSS vulnerability in Kronos Web Time and Attendance (webTA) affecting versions 4.1.x - 5.0 via...
Nolan B. KennedyJan 20, 20201 minCVE-2020-8493: Stored XSS in Kronos Web Time and Attendance (webTA) 3.8.xOverview This advisory addresses a Stored XSS vulnerability in Kronos Web Time and Attendance (webTA) affecting versions 3.8.x - 4.0 via...
Nolan B. KennedyJan 20, 20201 minCVE-2020-8494: Authenticated Remote Privilege Escalation in Kronos Web Time and Attendance (webTA)Overview Authenticated remote privilege escalation vulnerability in Kronos WebTA v3.8.x affecting the “com.threeis.webta.H402editUser”...