CVE-2026-52827
HIGH SEVERITYVulnerability Description
Kimai: Pre-2FA KIMAI_SESSION cookie grants full authenticated REST API access, bypassing TOTP
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
kimai/kimai
Discussion (0)
Add Comment
No comments yet. Be the first!