CVE-2021-3985
Published
CVSS v3
9
CRITICAL
CVSS v2
6
MEDIUM
Affected
1
PROJECT
Description
kimai2 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Kimai is the #1 open-source time-tracking application. From freelancers to companies and organisations - everyone can manage timesheets, generate reports, create invoices and so much more... Web-based multi-user application, available as On-Premise or SaaS version: https://www.kimai.org
GitHub