ГлавнаяУязвимости → CVE-2025-1388
8.8высокая

CVE-2025-1388

Описание

Orca HCM from LEARNING DIGITAL has an Arbitrary File Upload vulnerability, allowing remote attackers with regular privileges to upload and run web shells

Затрагиваемое ПО
Learningdigital Orca hcm
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-8430-32513-2.htmlhttps://www.twcert.org.tw/tw/cp-132-8429-07d7e-1.html