Skip to main content

Webitr Attendance System

4 CVEs product

Monthly

CVE-2023-48395 MEDIUM This Month

Kaifa Technology WebITR is an online attendance system, it has insufficient validation for user input within a special function. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Webitr Attendance System
NVD
CVSS 3.1
6.5
EPSS
0.7%
CVE-2023-48394 HIGH This Week

Kaifa Technology WebITR is an online attendance system, its file uploading function does not restrict upload of file with dangerous type. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Webitr Attendance System
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-48393 MEDIUM This Month

Kaifa Technology WebITR is an online attendance system. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Webitr Attendance System
NVD
CVSS 3.1
4.3
EPSS
0.6%
CVE-2023-48392 CRITICAL Act Now

Kaifa Technology WebITR is an online attendance system, it has a vulnerability in using hard-coded encryption key. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Webitr Attendance System
NVD
CVSS 3.1
9.8
EPSS
0.6%
EPSS 1% CVSS 6.5
MEDIUM This Month

Kaifa Technology WebITR is an online attendance system, it has insufficient validation for user input within a special function. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Webitr Attendance System
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Kaifa Technology WebITR is an online attendance system, its file uploading function does not restrict upload of file with dangerous type. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Webitr Attendance System
NVD
EPSS 1% CVSS 4.3
MEDIUM This Month

Kaifa Technology WebITR is an online attendance system. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Webitr Attendance System
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Kaifa Technology WebITR is an online attendance system, it has a vulnerability in using hard-coded encryption key. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Webitr Attendance System
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy