Kromit Titra

9 CVEs affecting Kromit Titra. Latest disclosed: 2026-01-08. Critical: 3, High: 1.

Top CVEs affecting Kromit Titra
CVESeverityScorePublishedSummary
CVE-2022-2595Critical10.02022-08-01Improper Authorization in GitHub repository kromitgmbh/titra prior to 0.79.1.
CVE-2022-2098Critical9.82022-06-16Weak Password Requirements in GitHub repository kromitgmbh/titra prior to 0.78.1.
CVE-2025-69288Critical9.12025-12-31Titra is open source project time tracking software. Prior to version 0.99.49, Titra allows any authenticated Admin user to modify the timeEntryRule in the dat…
CVE-2022-2027High8.02022-06-09Improper Neutralization of Formula Elements in a CSV File in GitHub repository kromitgmbh/titra prior to 0.77.0.
CVE-2026-21694Medium6.82026-01-08Titra is open source project time tracking software. Versions 0.99.49 and below have Improper Access Control, allowing users to view and edit other users' time…
CVE-2022-2029Medium5.42022-06-09Cross-site Scripting (XSS) - DOM in GitHub repository kromitgmbh/titra prior to 0.77.0.
CVE-2022-2028Medium5.42022-06-09Cross-site Scripting (XSS) - Generic in GitHub repository kromitgmbh/titra prior to 0.77.0.
CVE-2022-2026Medium5.42022-06-09Cross-site Scripting (XSS) - Stored in GitHub repository kromitgmbh/titra prior to 0.77.0.
CVE-2026-21695Medium4.32026-01-08Titra is open source project time tracking software. In versions 0.99.49 and below, an API has a Mass Assignment vulnerability which allows authenticated users…