Vulnerabilities > Anuko > Time Tracker > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-24 | CVE-2022-24707 | SQL Injection vulnerability in Anuko Time Tracker Anuko Time Tracker is an open source, web-based time tracking application written in PHP. | 8.8 |
| 2021-12-22 | CVE-2021-43851 | Unspecified vulnerability in Anuko Time Tracker Anuko Time Tracker is an open source, web-based time tracking application written in PHP. | 8.8 |
| 2021-04-13 | CVE-2021-29436 | Unspecified vulnerability in Anuko Time Tracker Anuko Time Tracker is an open source, web-based time tracking application written in PHP. | 8.1 |
| 2020-11-16 | CVE-2020-27423 | Improper Restriction of Excessive Authentication Attempts vulnerability in Anuko Time Tracker Anuko Time Tracker v1.19.23.5311 lacks rate limit on the password reset module which allows attacker to perform Denial of Service attack on any legitimate user's mailbox | 7.5 |
| 2020-10-16 | CVE-2020-15255 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Anuko Time Tracker In Anuko Time Tracker before verion 1.19.23.5325, due to not properly filtered user input a CSV export of a report could contain cells that are treated as formulas by spreadsheet software (for example, when a cell value starts with an equal sign). | 7.3 |