CVE-2025-44040 Information

Description

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via the UserService.php and the checkFOrOldHash function

Reference

https://github.com/hexomedin3/advisories/tree/main/CVE-2025-44040 https://github.com/orangehrm/orangehrm/releases/tag/v5.7