Unrated severityNVD Advisory· Published Feb 17, 2025· Updated Feb 18, 2025
Learning Digital Orca HCM - SQL Injection
CVE-2025-1389
Description
Orca HCM from Learning Digital has a SQL Injection vulnerability, allowing attackers with regular privileges to inject arbitrary SQL commands to read, modify, and delete database contents.
Affected products
1- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.twcert.org.tw/en/cp-139-8432-4b516-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-8431-61e42-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.