A vulnerability labeled as problematic has been found in horilla horilla-hr up to 1.5.0 . Affected is an unknown function of the component Notification Endpoint . Such manipulation leads to open redirect. This vulnerability is documented as CVE-2026-41513 . The attack can be executed remotely. There is not any exploit available. Applying a patch is advised to resolve this issue.