Lucene search
China National Vulnerability DatabaseCNVD-2021-91278HistoryNov 24, 2021 - 12:00 a.m.
kimai cross-site request forgery vulnerability
2021-11-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
kimai
time tracking
csrf
vulnerability
server
attacker
request
EPSS
0.001
Percentile
31.1%
Kimai is an open source, web-based multi-user time tracking application. kimai 2 1.16.2 previously contained a cross-site request forgery vulnerability, which stems from the product’s failure to verify that requests originate from trusted users. An attacker could send an unintended request to the server through this vulnerability.
Related
veracode
veracode
Cross-Site Request Forgery (CSRF)
2021-11-22 07:21:15
osv
osv
Cross-site Scripting in kimai2
2021-11-23 18:16:50
CVE-2021-3976
2021-11-19 11:15:07
github
github
Cross-site Scripting in kimai2
2021-11-23 18:16:50
cve
cve
CVE-2021-3976
2021-11-19 11:15:07
prion
prion
Cross site request forgery (csrf)
2021-11-19 11:15:00
cvelist
cvelist
CVE-2021-3976 Cross-Site Request Forgery (CSRF) in kevinpapst/kimai2
2021-11-19 10:35:10
huntr
huntr
Cross-Site Request Forgery (CSRF) in kevinpapst/kimai2
2021-11-16 10:26:07
nvd
nvd
CVE-2021-3976
2021-11-19 11:15:07