Vulnerabilities (CVE)

Filtered by vendor Timetrex Subscribe
Filtered by product Timetrex
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-4742 1 Timetrex 1 Timetrex 2024-02-04 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in interface/Login.php in TimeTrex 2.2.11 allow remote attackers to inject arbitrary web script or HTML via the (1) password and (2) user_name parameters.