Filtered by vendor Jorani Project
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-15918 | 1 Jorani Project | 1 Jorani | 2024-11-21 | N/A |
| An issue was discovered in Jorani 0.6.5. SQL Injection (error-based) allows a user of the application without permissions to read and modify sensitive information from the database used by the application via the startdate or enddate parameter to leaves/validate. | ||||
| CVE-2018-15917 | 1 Jorani Project | 1 Jorani | 2024-11-21 | N/A |
| Persistent cross-site scripting (XSS) issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language parameter to session/language. | ||||
Page 1 of 1.