Clock In Portal- Staff & Attendance Management@* Security Vulnerabilities and Issues — Clock In Portal- Staff & Attendance Management@* CVE List

Lucene search

InfigosoftwareClock In Portal- Staff & Attendance Management*

3 matches found

CVE•added 2023/05/15 1:15 p.m.•38 views

CVE-2023-0762

The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting designations, which could allow attackers to make logged in admins delete arbitrary designations via a CSRF attack

4.3CVSS4.9AI score0.00073EPSS

CVE•added 2023/05/15 1:15 p.m.•36 views

CVE-2023-0763

The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting Holidays, which could allow attackers to make logged in admins delete arbitrary holidays via a CSRF attack

4.3CVSS4.9AI score0.00056EPSS

CVE•added 2023/05/15 1:15 p.m.•35 views

CVE-2023-0761

The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting Staff members, which could allow attackers to make logged in admins delete arbitrary Staff via a CSRF attack

4.3CVSS4.9AI score0.00073EPSS