Vulnerabilities > Kimai > Kimai
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-31 | CVE-2023-46245 | Unspecified vulnerability in Kimai Kimai is a web-based multi-user time-tracking application. | 7.2 |
| 2023-02-15 | CVE-2020-19825 | Cross-site Scripting vulnerability in Kimai 1.30.0 Cross Site Scripting (XSS) vulnerability in kevinpapst kimai2 1.30.0 in /src/Twig/Runtime/MarkdownExtension.php, allows attackers to gain escalated privileges. | 9.6 |
| 2022-04-08 | CVE-2021-43515 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Kimai CSV Injection (aka Excel Macro Injection or Formula Injection) exists in creating new timesheet in Kimai. | 6.8 |