A popular plugin for managing human resources on WordPress websites, called Innovs HR, has a security issue. This means that anyone who is not authorized can manipulate the plugin and do things they shouldn’t be able to do. This includes adding themselves as an employee without permission, if they can trick the website administrator into clicking on a link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
