Daybydaycrm Daybyday
By the Year
In 2024 there have been 0 vulnerabilities in Daybydaycrm Daybyday . Daybyday did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 2 | 7.10 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Daybyday vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Daybydaycrm Daybyday Security Vulnerabilities
In DayByDay CRM, versions 2.2.0 through 2.2.1 (latest) are vulnerable to Insufficient Session Expiration
CVE-2022-22113
8.8 - High
- January 13, 2022
In DayByDay CRM, versions 2.2.0 through 2.2.1 (latest) are vulnerable to Insufficient Session Expiration. When a password has been changed by the user or by an administrator, a user that was already logged in, will still have access to the application even after the password was changed.
Insufficient Session Expiration
In DayByDay CRM, versions 1.1 through 2.2.1 (latest) suffer from an application-wide Client-Side Template Injection (CSTI)
CVE-2022-22112
5.4 - Medium
- January 13, 2022
In DayByDay CRM, versions 1.1 through 2.2.1 (latest) suffer from an application-wide Client-Side Template Injection (CSTI). A low privileged attacker can input template injection payloads in the application at various locations to execute JavaScript on the client browser.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Daybydaycrm Daybyday or by Daybydaycrm? Click the Watch button to subscribe.