Known vulnerabilities in Kevin Papst kimai2

Known vulnerabilities in Kevin Papst kimai2

Vendor: Kevin Papst

Website: https://github.com/kevinpapst

Total Security Bulletins: 10

Security bulletins (10)

Secuity bulletin	Severity	Status	Published
SB2026050636: Information disclosure in kimai2	Low	Patched	06.05.2026
SB2026042814: Multiple vulnerabilities in Kimai	Medium	Patched Public exploit	28.04.2026
SB2026042742: Improper Neutralization of Formula Elements in a CSV File in kimai2	Medium	Patched	27.04.2026
SB20260420105: Multiple vulnerabilities in kimai2	Low	Patched	20.04.2026
SB2026041478: Multiple vulnerabilities in kimai2	Low	Patched	14.04.2026
SB2026041477: Authorization bypass through user-controlled key in kimai2	Low	Patched	14.04.2026
SB2026011954: Server-Side Template Injection in kimai2	Low	Patched Public exploit	19.01.2026
SB2024032755: Insufficient Granularity of Access Control in kimai2	Low	Patched	27.03.2024
SB2023102736: Improper Neutralization of Special Elements Used in a Template Engine in kimai2	Low	Patched	27.10.2023
SB2021112209: Cross-site request forgery in Kimai2	Low	Patched	22.11.2021