Leave Management System

leave_management_system

Vendor: Jorani • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-48205 1Jorani 1Leave Management System Nov 21, 2024 Dec 7, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Jorani Leave Management System 1.0.2 allows a remote attacker to spoof a Host header associated with password reset emails.
CVE-2023-45540 1Jorani 1Leave Management System Nov 21, 2024 Oct 16, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in Jorani Leave Management System 1.0.3 allows a remote attacker to execute arbitrary HTML code via a crafted script to the comment field of the List of Leave requests page.