2 matches found
WordPress Human Resource Management Plugin < 2.2.6 Multiple Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mishubd:wphumanresourcemanagement"; if description...
CVE-2019-9574
The WP Human Resource Management plugin for WordPress is affected in versions before 2.2.6. The root cause is insufficient access control: leave modifications may not be performed within the context of the Administrator or HR Manager role. The description does not detail exploitability or affecte...