CVE-2026-52819
MEDIUM SEVERITYVulnerability Description
Kimai: Teamlead authorization bypass in GET /api/timesheets allows reading other users' timesheet records without being teamlead of the target
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
kimai/kimai
Discussion (0)
Add Comment
No comments yet. Be the first!