cbcvebase.

Horilla-Opensource Horilla vulnerabilities

19 known vulnerabilities affecting horilla-opensource/horilla.

Total CVEs
19
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH7MEDIUM11

Vulnerabilities

Page 1 of 1
CVE-2025-48868P2HIGHCVSS 7.2PoCv= 1.3.02025-09-24
CVE-2025-48868 [HIGH] CWE-95 CVE-2025-48868: Horilla is a free and open source Human Resource Management System (HRMS). An authenticated Remote C Horilla is a free and open source Human Resource Management System (HRMS). An authenticated Remote Code Execution (RCE) vulnerability exists in Horilla 1.3.0 due to the unsafe use of Python’s eval() function on a user-controlled query parameter in the project_bulk_archive view. This allows privileged users (e.g., administrators) to execute arbitrary sy
nvd
CVE-2026-24038P3HIGHCVSS 8.1v>= 1.4.0, < 1.5.02026-01-22
CVE-2026-24038 [HIGH] CWE-287 CVE-2026-24038: Horilla is a free and open source Human Resource Management System (HRMS). In version 1.4.0, the OTP Horilla is a free and open source Human Resource Management System (HRMS). In version 1.4.0, the OTP handling logic has a flawed equality check that can be bypassed. When an OTP expires, the server returns None, and if an attacker omits the otp field from their POST request, the user-supplied OTP is also None, causing the comparison user_otp == otp to
nvd
CVE-2025-59832P3CRITICALCVSS 9.9fixed in 1.4.02025-09-25
CVE-2025-59832 [CRITICAL] CWE-79 CVE-2025-59832: Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, t Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, there is a stored XSS vulnerability in the ticket comment editor. A low-privilege authenticated user could run arbitrary JavaScript in an admin’s browser, exfiltrate the admin’s cookies/CSRF token, and hijack their session. This issue has been patched
nvd
CVE-2026-40866P3HIGHCVSS 8.6v1.5.02026-04-21
CVE-2026-40866 [HIGH] CWE-284 CVE-2026-40866: Horilla is a free and open source Human Resource Management System (HRMS). In 1.5.0, an insecure dir Horilla is a free and open source Human Resource Management System (HRMS). In 1.5.0, an insecure direct object reference in the employee document upload endpoint allows any authenticated user to overwrite or replace or corrupt another employee’s document by changing the document ID in the upload request. This enables unauthorized modification of HR re
nvd
CVE-2026-24010P3HIGHCVSS 8.0fixed in 1.5.02026-01-22
CVE-2026-24010 [HIGH] CWE-74 CVE-2026-24010: Horilla is a free and open source Human Resource Management System (HRMS). A critical File Upload vu Horilla is a free and open source Human Resource Management System (HRMS). A critical File Upload vulnerability in versions prior to 1.5.0, with Social Engineering, allows authenticated users to deploy phishing attacks. By uploading a malicious HTML file disguised as a profile picture, an attacker can create a convincing login page replica that steals
nvd
CVE-2025-48869P3HIGHCVSS 7.5v= 1.3.02025-09-24
CVE-2025-48869 [HIGH] CWE-284 CVE-2025-48869: Horilla is a free and open source Human Resource Management System (HRMS). Unauthenticated users can Horilla is a free and open source Human Resource Management System (HRMS). Unauthenticated users can access uploaded resume files in Horilla 1.3.0 by directly guessing or predicting file URLs. These files are stored in a publicly accessible directory, allowing attackers to retrieve sensitive candidate information without authentication. At time of pub
nvd
CVE-2026-40867P3HIGHCVSS 7.1v1.5.02026-04-21
CVE-2026-40867 [HIGH] CWE-284 CVE-2026-40867: Horilla is a free and open source Human Resource Management System (HRMS). In 1.5.0, a broken access Horilla is a free and open source Human Resource Management System (HRMS). In 1.5.0, a broken access control vulnerability in the helpdesk attachment viewer allows any authenticated user to view attachments from other tickets by changing the attachment ID. This can expose sensitive support files and internal documents across unrelated users or teams.
nvd
CVE-2026-40865P3HIGHCVSS 7.1v1.5.02026-04-21
CVE-2026-40865 [HIGH] CWE-284 CVE-2026-40865: Horilla is a free and open source Human Resource Management System (HRMS). In 1.5.0, an insecure dir Horilla is a free and open source Human Resource Management System (HRMS). In 1.5.0, an insecure direct object reference in the employee document viewer allows any authenticated user to access other employees’ uploaded documents by changing the document ID in the request. This exposes sensitive HR files such as identity documents, contracts, certifica
nvd
CVE-2026-3049P4MEDIUMCVSS 6.1v1.0.0v1.0.1+1 more2026-02-24
CVE-2026-3049 [MEDIUM] CWE-601 CVE-2026-3049: A vulnerability was detected in horilla-opensource horilla up to 1.0.2. This issue affects the funct A vulnerability was detected in horilla-opensource horilla up to 1.0.2. This issue affects the function get of the file horilla_generics/global_search.py of the component Query Parameter Handler. The manipulation of the argument prev_url results in open redirect. The attack can be executed remotely. The exploit is now public and may be used. Upgrading
nvd
CVE-2025-59524P4MEDIUMCVSS 6.1fixed in 1.4.02025-09-24
CVE-2025-59524 [MEDIUM] CWE-79 CVE-2025-59524: Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, t Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, the file upload flow performs validation only in the browser and does not enforce server-side checks. An attacker can bypass the client-side validation (for example, with an intercepting proxy or by submitting a crafted request) to store an executable H
nvd
CVE-2025-47789P4MEDIUMCVSS 6.1≤ 1.32025-05-15
CVE-2025-47789 [MEDIUM] CWE-601 CVE-2025-47789: Horilla is a free and open source Human Resource Management System (HRMS). In versions up to and inc Horilla is a free and open source Human Resource Management System (HRMS). In versions up to and including 1.3, an attacker can craft a Horilla URL that refers to an external domain. Upon clicking and logging in, the user is redirected to an external domain. This allows the redirection to any arbitrary site, including phishing or malicious domains,
nvd
CVE-2026-24036P4MEDIUMCVSS 5.3v>= 1.4.0, < 1.5.02026-01-22
CVE-2026-24036 [MEDIUM] CWE-284 CVE-2026-24036: Horilla is a free and open source Human Resource Management System (HRMS). Versions 1.4.0 and above Horilla is a free and open source Human Resource Management System (HRMS). Versions 1.4.0 and above expose unpublished job postings through the /recruitment/recruitment-details// endpoint without authentication. The response includes draft job titles, descriptions and application link allowing unauthenticated users to view unpublished roles and acces
nvd
CVE-2026-3050P4MEDIUMCVSS 5.4v1.0.0v1.0.1+1 more2026-02-24
CVE-2026-3050 [MEDIUM] CWE-79 CVE-2026-3050: A flaw has been found in horilla-opensource horilla up to 1.0.2. Impacted is an unknown function of A flaw has been found in horilla-opensource horilla up to 1.0.2. Impacted is an unknown function of the file static/assets/js/global.js of the component Leads Module. This manipulation of the argument Notes causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used. Upgrading to version
nvd
CVE-2025-59525P4MEDIUMCVSS 6.1fixed in 1.4.02025-09-24
CVE-2025-59525 [MEDIUM] CWE-79 CVE-2025-59525: Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, i Horilla is a free and open source Human Resource Management System (HRMS). Prior to version 1.4.0, improper sanitization across the application allows XSS via uploaded SVG (and via allowed ), which can be chained to execute JavaScript whenever users view impacted content (e.g., announcements). This can result in admin account takeover. This issue has
nvd
CVE-2026-24037P4MEDIUMCVSS 5.4v>= 1.4.0, < 1.5.02026-01-22
CVE-2026-24037 [MEDIUM] CWE-79 CVE-2026-24037: Horilla is a free and open source Human Resource Management System (HRMS). In version 1.4.0, the has Horilla is a free and open source Human Resource Management System (HRMS). In version 1.4.0, the has_xss() function attempts to block XSS by matching input against a set of regex patterns. However, the regexes are incomplete and context-agnostic, making them easy to bypass. Attackers are able to redirect users to malicious domains, run external JavaS
nvd
CVE-2026-24034P4MEDIUMCVSS 5.4fixed in 1.5.02026-01-22
CVE-2026-24034 [MEDIUM] CWE-434 CVE-2026-24034: Horilla is a free and open source Human Resource Management System (HRMS). In versions prior to 1.5. Horilla is a free and open source Human Resource Management System (HRMS). In versions prior to 1.5.0, a cross-site scripting vulnerability can be triggered because the extension and content-type are not checked during the profile photo update step. Version 1.5.0 fixes the issue.
nvd
CVE-2026-24035P4MEDIUMCVSS 4.3v>= 1.4.0, < 1.5.02026-01-22
CVE-2026-24035 [MEDIUM] CWE-284 CVE-2026-24035: Horilla is a free and open source Human Resource Management System (HRMS). An Improper Access Contro Horilla is a free and open source Human Resource Management System (HRMS). An Improper Access Control vulnerability exists in Horilla HR Software starting in version 1.4.0 and prior to version 1.5.0, allowing any authenticated employee to upload documents on behalf of another employee without proper authorization. This occurs due to insufficient ser
nvd
CVE-2026-24039P4MEDIUMCVSS 4.3v>= 1.4.0, < 1.5.02026-01-22
CVE-2026-24039 [MEDIUM] CWE-284 CVE-2026-24039: Horilla is a free and open source Human Resource Management System (HRMS). Version 1.4.0 has Imprope Horilla is a free and open source Human Resource Management System (HRMS). Version 1.4.0 has Improper Access Control, allowing low-privileged employees to self-approve documents they have uploaded. The document-approval UI is intended to be restricted to administrator or high-privilege roles only; however, an insufficient server-side authorization c
nvd
CVE-2025-48867P4MEDIUMCVSS 4.8v= 1.3.02025-09-24
CVE-2025-48867 [MEDIUM] CWE-79 CVE-2025-48867: Horilla is a free and open source Human Resource Management System (HRMS). A stored cross-site scrip Horilla is a free and open source Human Resource Management System (HRMS). A stored cross-site scripting (XSS) vulnerability in Horilla HRM 1.3.0 allows authenticated admin or privileged users to inject malicious JavaScript payloads into multiple fields in the Project and Task modules. These payloads persist in the database and are executed when view
nvd
Horilla-Opensource Horilla vulnerabilities | cvebase