CVE-2026-6835 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The a+HCM developed by aEnrich has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload arbitrary files to any path, incl…
Medium CVSS: 5.1

CVE-2026-6835

The a+HCM developed by aEnrich has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload arbitrary files to any path, including HTML documents, which may result in a XSS-like effect.
Vendor
-
Product
-
CWE
CWE-434
Yayın Tarihi
2026-04-22 04:16:09
Güncelleme
2026-04-22 04:16:09
Source Identifier
twcert@cert.org.tw
KEV Date Added
-

Kategoriler

CWE-434 MEDIUM 2026

Referanslar

https://www.twcert.org.tw/en/cp-139-10836-ed15f-2.html https://www.twcert.org.tw/tw/cp-132-10835-cb0c2-1.html