5 matches found
OrangeHRM has unspecified vulnerabilities
Orangehrm is a human resource management system HRM from Orangehrm, a US-based company. The system supports personnel information management, leave management, attendance management and recruitment management. orangehrm version 4.10 has a security vulnerability that can be exploited by an attacke...
OrangeHRM Cross-Site Scripting Vulnerability (CNVD-2022-30440)
Orangehrm is a human resource management system HRM from Orangehrm, a US-based company. The system supports personnel information management, leave management, attendance management and recruitment management, etc. Orangehrm version 4.10 has a cross-site scripting vulnerability that can be...
Transnational Fraud Ring Bilks U.S. Military Service Members Out of Millions
More than 3,300 U.S. military service members, military dependents and civilians employed by the Department of Defense were compromised as part of a transnational cybercrime ring created to defraud them out of $1.5 million in military benefits from the DoD and the Department of Veterans Affairs. ...
Authorization
SAP's HCM Travel Management Fiori Apps V2, version - 608, does not perform proper authorization check, allowing an authenticated but unauthorized attacker to read personnel numbers of employees, resulting in escalation of privileges. However, the attacker can only read some information like last...
UK Ministry of Defence hacked by NullCrew
The United Kingdom Ministry of Defence website www.qhm.mod.uk hacked by two Null Hacking Crew members @OfficialNull and @Timoxeline and They extracted data published online. The data dump include 3400 email addresses and passwords from Ministry of Defence portal. Hackers trying to trend...