Kaifa Webitr Attendance System — known CVE vulnerabilities
Every CVE whose affected-product data names Kaifa Webitr Attendance System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-48392 — CVSS 9.8 (critical): Kaifa Technology WebITR is an online attendance system, it has a vulnerability in using hard-coded encryption key. An unauthenticated…
CVE-2023-48394 — CVSS 8.8 (high): Kaifa Technology WebITR is an online attendance system, its file uploading function does not restrict upload of file with dangerous type. A…
CVE-2023-48395 — CVSS 6.5 (medium): Kaifa Technology WebITR is an online attendance system, it has insufficient validation for user input within a special function. A remote…
CVE-2023-48393 — CVSS 4.3 (medium): Kaifa Technology WebITR is an online attendance system. A remote attacker with regular user privilege can obtain partial sensitive system…