Sign in Subscribe

← All vendors

Vendor

Kevinpapst

Products

1

CVEs

1

Across products

1

Status

Private

Products

1

Kimai2
1 CVE

Recent CVEs

1

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2023-53957		0.00	—	0.00		Dec 19, 2025	Kimai 1.30.10 contains a SameSite cookie vulnerability that allows attackers to steal user session cookies through malicious exploitation. Attackers can trick victims into executing a crafted PHP script that captures and writes session cookie information to a file, enabling potential session hijacking.

CVE-2023-53957Dec 19, 2025
risk 0.00cvss —epss 0.00
Kimai 1.30.10 contains a SameSite cookie vulnerability that allows attackers to steal user session cookies through malicious exploitation. Attackers can trick victims into executing a crafted PHP script that captures and writes session cookie information to a file, enabling potential session hijacking.