Back to CVE List

CVE-2026-52819

MEDIUM SEVERITY

Vulnerability Description

Kimai: Teamlead authorization bypass in GET /api/timesheets allows reading other users' timesheet records without being teamlead of the target

Vulnerability Details

Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
kimai/kimai

External References

Discussion (0)

Add Comment

No comments yet. Be the first!