Product
scshr hr portal
11 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-5192
CVE-2025-48784
CVE-2025-48783
CVE-2025-48782
CVE-2025-48781
CVE-2025-48780
CVE-2023-34357
CVE-2021-22855
CVE-2021-22854
CVE-2021-22853
CVE-2019-10257
<= 7.3.2025.0408
A missing authentication for critical function vulnerability in the client application of Soar Cloud HRD Human Resource Management
<= 7.3.2025.0408
A missing authorization vulnerability in Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remo
<= 7.3.2025.0408
An external control of file name or path vulnerability in the delete file function of Soar Cloud HRD Human Resource Management Sys
<= 7.3.2025.0408
An unrestricted upload of file with dangerous type vulnerability in the upload file function of Soar Cloud HRD Human Resource Mana
<= 7.3.2025.0408
An external control of file name or path vulnerability in the download file function of Soar Cloud HRD Human Resource Management S
<= 7.3.2025.0408
A deserialization of untrusted data vulnerability in the download file function of Soar Cloud HRD Human Resource Management System
all versions
Soar Cloud Ltd. HR Portal has a weak Password Recovery Mechanism for Forgotten Password. The reset password link sent out through
all versions
The specific function of HR Portal of Soar Cloud System accepts any type of object to be deserialized. Attackers can send maliciou
all versions
The HR Portal of Soar Cloud System fails to filter specific parameters. Remote attackers can inject SQL syntax and obtain all data
all versions
The HR Portal of Soar Cloud System fails to manage access control. While obtaining user ID, remote attackers can access sensitive
<= 2019-03-15
Zucchetti HR Portal through 2019-03-15 allows Directory Traversal. Unauthenticated users can escape outside of the restricted loca