📦 Worktime
by Nestersoft
🔍 What is Worktime?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2025-15559 is an unauthenticated OS command injection vulnerability in NesterSoft WorkTime server's client generation API. Attackers can execute arbitrary commands with SYSTEM privileges by manipu...
This vulnerability allows local attackers to achieve privilege escalation to SYSTEM level by placing a malicious executable in a world-writable directory. The WorkTime monitoring daemon will automatic...
This vulnerability allows any unauthenticated user to reset the WorkTime on-prem database configuration by sending a specific HTTP request to the WorkTime server. This occurs because no authorization ...