Orangehrm · Orangehrm · CVE-2026-39347
Name of the Vulnerable Software and Affected Versions
OrangeHRM versions 5.0 through 5.8
Description
OrangeHRM Open Source allows changes to self-appraisal submissions for administrator users after those submissions have been marked completed, compromising the integrity of finalized appraisal records.
Recommendations
Update to version 5.8.1 or later.