Whoisshuvam

**Name of the Vulnerable Software and Affected Versions** Horilla versions prior to 1.5.0 **Description** Horilla HR Software contains an Improper Access Control issue. An authenticated employee can upload documents on behalf of another employee without authorization. This is due to insufficient server-side validation of the `employee id` parameter during file upload operations. **Recommendations** Update to version 1.5.0 or later.

**Name of the Vulnerable Software and Affected Versions** Horilla versions 1.4.0 through 1.4.9 **Description** Horilla, a Human Resource Management System (HRMS), has an issue where unpublished job postings are exposed. This occurs through the ''/recruitment/recruitment-details//'' endpoint without requiring authentication. The response includes draft job titles, descriptions, and the application link, allowing unauthenticated users to view unpublished roles and access the application workflow. This unauthorized access can lead to the leakage of sensitive internal hiring information and candidate confusion. **Recommendations** Update to version 1.5.0 or later.

**Name of the Vulnerable Software and Affected Versions** Horilla versions prior to 1.5.0 **Description** Horilla is a Human Resource Management System (HRMS). The `has xss()` function in version 1.4.0 attempts to prevent Cross-Site Scripting (XSS) by using regular expressions to filter input. However, these regular expressions are insufficient and do not consider the context of the input, allowing attackers to bypass the filtering mechanism. Successful exploitation can lead to redirecting users to malicious domains, executing external JavaScript, and stealing Cross-Site Request Forgery (CSRF) tokens. These stolen tokens can then be used to perform Cross-Site Request Forgery attacks against administrators. **Recommendations** Horilla versions prior to 1.5.0 should be updated to version 1.5.0 or later.

**Name of the Vulnerable Software and Affected Versions** Horilla version 1.4.0 **Description** Horilla, a Human Resource Management System (HRMS), contains a flaw in its two-factor authentication implementation. Specifically, the OTP handling logic has a flawed equality check. When an OTP expires, the server returns None. An attacker can bypass two-factor authentication by omitting the `otp` field from their POST request, causing the comparison `user otp == otp` to pass, even without a valid OTP. Targeting administrative accounts could lead to compromise of sensitive HR data and manipulation of employee records. The vulnerable parameter is `otp`. **Recommendations** Update to version 1.5.0 or later.

**Name of the Vulnerable Software and Affected Versions** Horilla versions prior to 1.5.0 **Description** Horilla, a Human Resource Management System (HRMS), contains an Improper Access Control issue. A low-privileged employee can self-approve documents they have uploaded, despite the document-approval user interface being intended for administrator or high-privilege roles only. This is due to an insufficient server-side authorization check on the approval endpoint. Exploitation allows users with employee-level permissions to alter application state reserved for administrators, potentially undermining the integrity of HR processes. The vulnerable endpoint is the approval endpoint. The vulnerable action involves modifying the approval status of a document using the `user id` associated with the employee. **Recommendations** Update to version 1.5.0 or later.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Calendar app versions prior to 4.4.4 **Description** The issue is related to missing precondition checks in the Nextcloud calendar app, which causes the server to attempt validation of strings of any length as email addresses. This can lead to the server becoming busy and unresponsive, potentially allowing a remote attacker to cause a denial of service. **Recommendations** For versions prior to 4.4.4, upgrade the Nextcloud Calendar app to 4.4.4. As a temporary workaround for users unable to upgrade, disable the calendar app.