← Back

Infigosoftware

infigosoftware

3 CVEs • 1 product

Products (1)

Click to collapse
Toggle

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
1Infigosoftware
1Clock In Portal Staff & Attendance Management
Jun 17, 2026
May 15, 2023
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting Holidays, which could allow attackers to make logged in admins delete arbitrary holidays via a CSRF a...Show more
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting Holidays, which could allow attackers to make logged in admins delete arbitrary holidays via a CSRF attackShow less
1Infigosoftware
1Clock In Portal Staff & Attendance Management
Jun 17, 2026
May 15, 2023
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting designations, which could allow attackers to make logged in admins delete arbitrary designations via...Show more
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting designations, which could allow attackers to make logged in admins delete arbitrary designations via a CSRF attackShow less
1Infigosoftware
1Clock In Portal Staff & Attendance Management
Jun 17, 2026
May 15, 2023
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting Staff members, which could allow attackers to make logged in admins delete arbitrary Staff via a CSRF...Show more
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting Staff members, which could allow attackers to make logged in admins delete arbitrary Staff via a CSRF attackShow less