PT-2026-45747

Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2...

WordPress Crew HRM Plugin <= 1.1.1 is vulnerable to PHP Object Injection

Software Crew HRM Type Plugin Vulnerable versions = 1.1.1 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-43252 Patch priority High CVSS severity High 9 Developer Sekander Badsha PSID e529c4ddfdc3 Credits CatFather Required privilege Unauthenticated...