Every CVE whose affected-product data names Nestersoft Worktime, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2025-15559 — CVSS 9.8 (critical): An unauthenticated attacker can inject OS commands when calling a server API endpoint in NesterSoft WorkTime. The server API call to…
CVE-2025-15560 — CVSS 8.8 (high): An authenticated attacker with minimal permissions can exploit a SQL injection in the WorkTime server "widget" API endpoint to inject SQL…
CVE-2025-15561 — CVSS 7.8 (high): An attacker can exploit the update behavior of the WorkTime monitoring daemon to elevate privileges on the local system to NT…
CVE-2025-15562 — CVSS 6.1 (medium): The server API endpoint /report/internet/urls reflects received data into the HTML response without applying proper encoding or filtering…
CVE-2025-15563 — CVSS 5.3 (medium): Any unauthenticated user can reset the WorkTime on-prem database configuration by sending a specific HTTP request to the WorkTime server…