Filtered by vendor Simplehrm Subscriptions
Filtered by product Simplehrm Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2013-2499 1 Simplehrm 1 Simplehrm 2024-11-21 7.5 High
SimpleHRM 2.3 and earlier could allow remote attackers to bypass the authentication process in 'user_manager.php' via spoofing a cookie.
CVE-2013-2498 1 Simplehrm 1 Simplehrm 2024-11-21 N/A
SQL injection vulnerability in the login page in flexycms/modules/user/user_manager.php in SimpleHRM 2.3, 2.2, and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to index.php/user/setLogin.