Lucene search
K

394 matches found

NVD
NVD
added 2025/06/06 10:15 a.m.19 views

CVE-2025-5192

A missing authentication for critical function vulnerability in the client application of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to bypass authentication and access application functions...

9.3CVSS0.00444EPSS
Exploits0References1
OSV
OSV
added 2025/06/06 10:15 a.m.5 views

CVE-2025-48782

An unrestricted upload of file with dangerous type vulnerability in the upload file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to execute arbitrary system commands via a malicious file...

9.8CVSS6.2AI score0.00441EPSS
Exploits0References1
OSV
OSV
added 2025/06/06 10:15 a.m.5 views

CVE-2025-5192

A missing authentication for critical function vulnerability in the client application of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to bypass authentication and access application functions...

7.5CVSS5.9AI score0.00444EPSS
Exploits0References1
OSV
OSV
added 2025/06/06 10:15 a.m.5 views

CVE-2025-48784

A missing authorization vulnerability in Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to modify system settings without prior authorization...

7.5CVSS5.8AI score0.00316EPSS
Exploits1References1
NVD
NVD
added 2025/06/06 10:15 a.m.12 views

CVE-2025-48780

A deserialization of untrusted data vulnerability in the download file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to execute arbitrary system commands via a crafted serialized object...

9.9CVSS0.0046EPSS
Exploits0References1
NVD
NVD
added 2025/06/06 10:15 a.m.28 views

CVE-2025-48781

An external control of file name or path vulnerability in the download file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to obtain partial files by specifying arbitrary file paths...

8.7CVSS0.0038EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 9:28 a.m.17 views

CVE-2025-48784 Soar Cloud HRD Human Resource Management System - Missing Authorization

A missing authorization vulnerability in Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to modify system settings without prior authorization...

8.8CVSS0.00316EPSS
Exploits1References1
CVE
CVE
added 2025/06/06 9:28 a.m.54 views

CVE-2025-48784

CVE-2025-48784 affects Soar Cloud HRD Human Resource Management System prior to version 7.3.2025.0408. The vulnerability is a missing authorization issue that allows remote attackers to modify system settings without prior authorization. Public references (NVD, Red Hat, PTSecurity, CVE lists) con...

8.8CVSS6.6AI score0.00316EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/06 9:28 a.m.6 views

CVE-2025-48784 Soar Cloud HRD Human Resource Management System - Missing Authorization

A missing authorization vulnerability in Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to modify system settings without prior authorization...

8.8CVSS7.2AI score0.00316EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/06 9:27 a.m.23 views

CVE-2025-48783 Soar Cloud HRD Human Resource Management System - External Control of File Name or Path

An external control of file name or path vulnerability in the delete file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to delete partial files by specifying arbitrary file paths...

8.8CVSS0.0033EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 9:27 a.m.55 views

CVE-2025-48783

CVE-2025-48783 describes an external control of file name or path in the delete file function of Soar Cloud HRD Human Resource Management System, affected up to version 7.3.2025.0408. The vulnerability allows remote attackers to delete partial files by specifying arbitrary file paths. Exploitatio...

8.8CVSS6.8AI score0.0033EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/06 9:27 a.m.10 views

CVE-2025-48783 Soar Cloud HRD Human Resource Management System - External Control of File Name or Path

An external control of file name or path vulnerability in the delete file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to delete partial files by specifying arbitrary file paths...

8.8CVSS7.3AI score0.0033EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 9:24 a.m.20 views

CVE-2025-48782 Soar Cloud HRD Human Resource Management System - Unrestricted Upload of File with Dangerous Type

An unrestricted upload of file with dangerous type vulnerability in the upload file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to execute arbitrary system commands via a malicious file...

9.9CVSS0.00441EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 9:24 a.m.52 views

CVE-2025-48782

Soar Cloud HRD Human Resource Management System (Soar Cloud HRMS) is affected up to version 7.3.2025.0408. The vulnerability is an unrestricted upload of files with dangerous types in the upload file function, enabling remote command execution by a malicious file. The connected sources consistent...

9.9CVSS7.5AI score0.00441EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/06 9:24 a.m.7 views

CVE-2025-48782 Soar Cloud HRD Human Resource Management System - Unrestricted Upload of File with Dangerous Type

An unrestricted upload of file with dangerous type vulnerability in the upload file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to execute arbitrary system commands via a malicious file...

9.9CVSS8AI score0.00441EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 9:21 a.m.6 views

CVE-2025-48781 Soar Cloud HRD Human Resource Management System - External Control of File Name or Path

An external control of file name or path vulnerability in the download file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to obtain partial files by specifying arbitrary file paths...

8.7CVSS7.2AI score0.0038EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 9:21 a.m.30 views

CVE-2025-48781 Soar Cloud HRD Human Resource Management System - External Control of File Name or Path

An external control of file name or path vulnerability in the download file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to obtain partial files by specifying arbitrary file paths...

8.7CVSS0.0038EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 9:21 a.m.54 views

CVE-2025-48781

The CVE-2025-48781 issue affects Soar Cloud HRD Human Resource Management System, specifically versions prior to and including 7.3.2025.0408. The vulnerability is an external control of file name or path in the download file function, enabling remote attackers to obtain partial files by specifyin...

8.7CVSS6.8AI score0.0038EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/06 9:19 a.m.7 views

CVE-2025-48780 Soar Cloud HRD Human Resource Management System - Deserialization of Untrusted Data

A deserialization of untrusted data vulnerability in the download file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to execute arbitrary system commands via a crafted serialized object...

9.9CVSS8.1AI score0.0046EPSS
Exploits0References1
CVE
CVE
added 2025/06/06 9:19 a.m.57 views

CVE-2025-48780

CVE-2025-48780 affects Soar Cloud HRD Human Resource Management System prior to version 7.3.2025.0408. A deserialization vulnerability in the download file function allows remote attackers to execute arbitrary system commands via a crafted serialized object. Public metrics list a critical impact ...

9.9CVSS7.6AI score0.0046EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder