Cross-site Scripting (XSS) vulnerability in kimai2

Cross-site Scripting (XSS) vulnerability in kimai2

CVE-2021-3985 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

kimai2 is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Learn more about our Web App Pen Testing.