VYPR
High severity7.3NVD Advisory· Published Apr 1, 2025· Updated Apr 15, 2026

CVE-2025-29033

CVE-2025-29033

Description

An issue in BambooHR Build v.25.0210.170831-83b08dd allows a remote attacker to escalate privileges via the /saml/index.php?r=" HTTP GET parameter.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.