Vulnerabilities > Jorani > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-17 | CVE-2023-26469 | Path Traversal vulnerability in Jorani 1.0.0 In Jorani 1.0.0, an attacker could leverage path traversal to access files and execute code on the server. | 9.8 |
| 2022-06-28 | CVE-2022-34132 | SQL Injection vulnerability in Jorani 1.0.0 Benjamin BALET Jorani v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at application/controllers/Leaves.php. | 9.8 |