CVE-2025-3706 – 104 Corporation eHRMS Reflected Cross-site Scripting Vulnerability

April 28, 2025

CVE ID : CVE-2025-3706

Published : April 28, 2025, 3:15 a.m. | 5 hours, 13 minutes ago

Description : The eHRMS from 104 Corporation has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user’s browser through phishing attacks.

Severity: 6.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3997 – Dazhouda lecms Cross-Site Request Forgery (CSRF) Vulnerability

Next Article CVE-2025-3996 – TOTOLINK N150RT Cross-Site Scripting Vulnerability

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

Understanding the code modernization conundrum

Not just YouTube: Google is using AI to guess your age based on your activity – everywhere

Malicious extensions can use ChatGPT to steal your personal data – here’s how

What Zuckerberg’s ‘personal superintelligence’ sales pitch leaves out

This handy NordVPN tool flags scam calls on Android – even before you answer

Route Optimization through Laravel’s Shallow Resource Architecture

Route Optimization through Laravel’s Shallow Resource Architecture

This Week in Laravel: Laracon News, Free Laravel Idea, and Claude Code Course

Everything We Know About Pest 4

FOSS Weekly #25.31: Kernel 6.16, OpenMandriva Review, Conky Customization, System Monitoring and More

FOSS Weekly #25.31: Kernel 6.16, OpenMandriva Review, Conky Customization, System Monitoring and More

Windows 11’s MSN Widgets board now opens in default browser, such as Chrome (EU only)

Microsoft’s new “move to Windows 11” campaign implies buying OneDrive paid plan

CVE-2025-3706 – 104 Corporation eHRMS Reflected Cross-site Scripting Vulnerability

The hidden risks of browser extensions – and how to stay safe

Minnesota National Guard Deployed After Major Cyberattack on St. Paul City Systems

CVE-2025-3855 – CodeCanyon RISE Ultimate Project Manager File Inclusion Vulnerability

NVIDIA’s RTX 5050 specs leaked: 2560 CUDA cores, GDDR6 memory, and Blackwell chip

CVE-2025-32412 – Fuji Electric Smart Editor Out-of-Bounds Read RCE

Empowering Developers and Fueling AI Adoption with AmpereOne Design Innovations

Oh My Posh is a prompt theme engine for any shell

SaveFBS Facebook Video Downloader

This 34-inch ultrawide OLED blew me away – and its Prime Day deal makes it even better

Samsung dropped the 4TB T9 portable SSD to over 40% off ahead of Prime Day

CVE-2025-3706 – 104 Corporation eHRMS Reflected Cross-site Scripting Vulnerability

Related Posts