VYPR
High severity8.8NVD Advisory· Published Jan 13, 2022· Updated Jun 17, 2026

CVE-2022-22113

CVE-2022-22113

Description

In DayByDay CRM, versions 2.2.0 through 2.2.1 (latest) are vulnerable to Insufficient Session Expiration. When a password has been changed by the user or by an administrator, a user that was already logged in, will still have access to the application even after the password was changed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • DaybydayCRM/DaybydayCRMllm-fuzzy2 versions
    2.2.0 - 2.2.1+ 1 more
    • (no CPE)range: 2.2.0 - 2.2.1
    • (no CPE)range: 2.2.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.