Known vulnerabilities in Kevin Papst kimai2

Vendor: Kevin Papst
Website: https://github.com/kevinpapst
Total Security Bulletins: 6

Security bulletins (6)

Secuity bulletin Severity Status Published
SB2026041478: Multiple vulnerabilities in kimai2 Low
Patched
14.04.2026
SB2026041477: Authorization bypass through user-controlled key in kimai2 Low
Patched
14.04.2026
SB2026011954: Server-Side Template Injection in kimai2 Low
Patched Public exploit
19.01.2026
SB2024032755: Insufficient Granularity of Access Control in kimai2 Low
Patched
27.03.2024
SB2023102736: Improper Neutralization of Special Elements Used in a Template Engine in kimai2 Low
Patched
27.10.2023
SB2021112209: Cross-site request forgery in Kimai2 Low
Patched
22.11.2021