VYPR

HRForecast Suite

by HRForecast

CVEs (1)

  • CVE-2025-51506MedAug 19, 2025
    risk 0.42cvss 6.5epss 0.00

    In the smartLibrary component of the HRForecast Suite 0.4.3, a SQL injection vulnerability was discovered in the valueKey parameter. This flaw enables any authenticated user to execute arbitrary SQL queries, via crafted payloads to valueKey to the…