Jorani Leave Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Jorani Leave Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-45540 — CVSS 6.5 (medium): An issue in Jorani Leave Management System 1.0.3 allows a remote attacker to execute arbitrary HTML code via a crafted script to the…
CVE-2023-48205 — CVSS 5.3 (medium): Jorani Leave Management System 1.0.2 allows a remote attacker to spoof a Host header associated with password reset emails.