Moderate severity vulnerability was found in composer kevinpapst/kimai2 (composer) .

kimai2 is vulnerable to Cross-Site Request Forgery (CSRF) in deleting invoice templates. This vulnerability is capable of tricking admin user to delete invoice templates.

References


Courtesy:https://github.com/advisories/GHSA-gf2c-93hm-r9j5

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *