CVE-2025-66289 | OrangeHRM up to 5.7 session expiration (GHSA-99qp-xh4q-pr9x / EUVD-2025-199905)

A vulnerability, which was classified as critical, was found in OrangeHRM up to 5.7. Affected by this vulnerability is an unknown functionality. The manipulation results in session expiration.

This vulnerability is reported as CVE-2025-66289. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More