Iwcnetwork CVE - OpenCVE

Filtered by vendor Iwcnetwork Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-17876	1 Iwcnetwork	1 Shift	2018-01-10	5.0 MEDIUM	7.5 HIGH
Biometric Shift Employee Management System 3.0 allows remote attackers to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
CVE-2017-17990	1 Iwcnetwork	1 Biometric Shift Employee Management System	2018-01-09	6.8 MEDIUM	8.8 HIGH
Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action.

Vulnerabilities (CVE)