An external control of file name or path vulnerability in the download file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to obtain partial files by specifying arbitrary file paths.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Soar Cloud System CO., LTD.

HRD Human Resource Management System

Affected Versions:

References

https://zuso.ai/advisory/za-2025-06

Published: 2025-06-06T09:21:58.306Z

Last Modified: 2025-06-06T16:57:16.260Z

Copied to clipboard!