2 matches found
OrangeHRM 2.7 RC - pluginsajaxCallshaltResumeHsp.php?hspSummaryId SQL Injection
OrangeHRM 2.7 RC - pluginsajaxCallshaltResumeHsp.php?hspSummaryId SQL Injection source: https://www.securityfocus.com/bid/53433/info OrangeHRM is prone to an SQL-injection and multiple cross-site scripting vulnerabilities. Exploiting these vulnerabilities could allow an attacker to steal...
OrangeHRM 2.7 RC - templateshrfunctemppop.php?sortOrder1 Cross-Site Scripting
OrangeHRM 2.7 RC - templateshrfunctemppop.php?sortOrder1 Cross-Site Scripting source: https://www.securityfocus.com/bid/53433/info OrangeHRM is prone to an SQL-injection and multiple cross-site scripting vulnerabilities. Exploiting these vulnerabilities could allow an attacker to steal cookie-bas...