CVE-2025-40975 | WorkDo HRMGo POST Request changereply Description cross site scripting

A vulnerability classified as problematic was found in WorkDo HRMGo. Impacted is an unknown function of the file /hrmgo/ticket/changereply of the component POST Request Handler. Such manipulation of the argument Description leads to cross site scripting.

This vulnerability is documented as CVE-2025-40975. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More