Lucene search
+L

5 matches found

CNVD
CNVD
added 2022/04/07 12:0 a.m.15 views

OrangeHRM has unspecified vulnerabilities

Orangehrm is a human resource management system HRM from Orangehrm, a US-based company. The system supports personnel information management, leave management, attendance management and recruitment management. orangehrm version 4.10 has a security vulnerability that can be exploited by an attacke...

4.3CVSS2.6AI score0.00579EPSS
Exploits1References1
CNVD
CNVD
added 2022/04/07 12:0 a.m.13 views

OrangeHRM Cross-Site Scripting Vulnerability (CNVD-2022-30440)

Orangehrm is a human resource management system HRM from Orangehrm, a US-based company. The system supports personnel information management, leave management, attendance management and recruitment management, etc. Orangehrm version 4.10 has a cross-site scripting vulnerability that can be...

5.4CVSS2.7AI score0.00479EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2021/10/04 3:22 p.m.49 views

Transnational Fraud Ring Bilks U.S. Military Service Members Out of Millions

More than 3,300 U.S. military service members, military dependents and civilians employed by the Department of Defense were compromised as part of a transnational cybercrime ring created to defraud them out of $1.5 million in military benefits from the DoD and the Department of Veterans Affairs. ...

7.9AI score
Exploits0References3
Prion
Prion
added 2021/04/13 7:15 p.m.13 views

Authorization

SAP's HCM Travel Management Fiori Apps V2, version - 608, does not perform proper authorization check, allowing an authenticated but unauthorized attacker to read personnel numbers of employees, resulting in escalation of privileges. However, the attacker can only read some information like last...

4CVSS4.8AI score0.00582EPSS
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 2012/11/06 6:56 p.m.11 views

UK Ministry of Defence hacked by NullCrew

The United Kingdom Ministry of Defence website www.qhm.mod.uk hacked by two Null Hacking Crew members @OfficialNull and @Timoxeline and They extracted data published online. The data dump include 3400 email addresses and passwords from Ministry of Defence portal. Hackers trying to trend...

8AI score
Exploits0
Rows per page
Query Builder