CVE-2026-40866

HIGH

Horilla: Unauthorized Document Overwrite via File Upload Endpoint

Title source: cna

Description

Horilla is a free and open source Human Resource Management System (HRMS). In 1.5.0, an insecure direct object reference in the employee document upload endpoint allows any authenticated user to overwrite or replace or corrupt another employee’s document by changing the document ID in the upload request. This enables unauthorized modification of HR records.

References (1)

[X_Refsource_Confirm] https://github.com/horilla/horilla-hr/security/advisories/GHSA-q2qh-v828-r4p7

Scores

CVSS v4 8.6

EPSS 0.0004

EPSS Percentile 13.0%

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-284 CWE-639

Status published

Products (1)

horilla-opensource/horilla 1.5.0

Published Apr 21, 2026

Tracked Since Apr 22, 2026