Vulnerabilities > Kaifa

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-15	CVE-2023-48392	Use of Hard-coded Cryptographic Key vulnerability in Kaifa Webitr Attendance System 2.1.0.23 Kaifa Technology WebITR is an online attendance system, it has a vulnerability in using hard-coded encryption key. network low complexity kaifa CWE-321 critical	9.8
2023-12-15	CVE-2023-48393	Information Exposure Through an Error Message vulnerability in Kaifa Webitr Attendance System 2.1.0.23 Kaifa Technology WebITR is an online attendance system. network low complexity kaifa CWE-209	4.3
2023-12-15	CVE-2023-48394	Unrestricted Upload of File with Dangerous Type vulnerability in Kaifa Webitr Attendance System 2.1.0.23 Kaifa Technology WebITR is an online attendance system, its file uploading function does not restrict upload of file with dangerous type. network low complexity kaifa CWE-434	8.8
2023-12-15	CVE-2023-48395	SQL Injection vulnerability in Kaifa Webitr Attendance System 2.1.0.23 Kaifa Technology WebITR is an online attendance system, it has insufficient validation for user input within a special function. network low complexity kaifa CWE-89	6.5

Vulnerabilities > Kaifa {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Kaifa"}]}