This issue affects Crew HRM: from n/a through 1.2.2.
Analysis and contextual insights are available on OpenCVE Cloud.
Vendor Solution
Update the WordPress Crew HRM Plugin to the latest available version (at least 1.2.3).
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 03 Jun 2026 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Sekander Badsha
Sekander Badsha crew Hrm Wordpress Wordpress wordpress |
|
| Vendors & Products |
Sekander Badsha
Sekander Badsha crew Hrm Wordpress Wordpress wordpress |
Tue, 02 Jun 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 02 Jun 2026 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Missing Authorization vulnerability in Sekander Badsha Crew HRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Crew HRM: from n/a through 1.2.2. | |
| Title | WordPress Crew HRM plugin <= 1.2.2 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-02T15:13:17.122Z
Reserved: 2026-02-19T09:51:41.702Z
Link: CVE-2026-27351
Updated: 2026-06-02T15:13:13.387Z
Status : Deferred
Published: 2026-06-02T14:16:50.173
Modified: 2026-06-02T14:43:49.920
Link: CVE-2026-27351
No data.
OpenCVE Enrichment
Updated: 2026-06-02T20:51:08Z