CVE-2021-3983

MEDIUM6.3EPSS 0.21%

Cross-site Scripting in kimai2

Published: 12/3/2021Modified: 11/8/2023
Also known as:GHSA-67c7-5v9j-227r

Description

kimai2 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').

Affected packages (1)

CVSS scores

SourceVersionSeverityVector
osvCVSS 3.1MEDIUM6.3CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

References (5)