Aenrich A+hcm
2 CVEs affecting Aenrich A+hcm. Latest disclosed: 2026-04-22. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-6835 | Medium | 6.1 | 2026-04-22 | The a+HCM developed by aEnrich has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload arbitrary files to any path, inc… |
CVE-2025-12872 | Medium | 5.4 | 2025-11-12 | The a+HRD and a+HCM developed by aEnrich has a Stored Cross-Site Scripting vulnerability, allowing authenticated remote attackers to upload files containing ma… |