Vulnerabilities > Anuko

DATE	CVE	VULNERABILITY TITLE	RISK
2020-11-16	CVE-2020-27422	Insufficient Session Expiration vulnerability in Anuko Time Tracker In Anuko Time Tracker v1.19.23.5311, the password reset link emailed to the user doesn't expire once used, allowing an attacker to use the same link to takeover the account. network low complexity anuko CWE-613 critical	9.8
2020-10-16	CVE-2020-15255	Improper Neutralization of Formula Elements in a CSV File vulnerability in Anuko Time Tracker In Anuko Time Tracker before verion 1.19.23.5325, due to not properly filtered user input a CSV export of a report could contain cells that are treated as formulas by spreadsheet software (for example, when a cell value starts with an equal sign). local low complexity anuko CWE-1236	7.3

Vulnerabilities > Anuko {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Anuko"}]}