Known Vulnerabilities for products from Iwcnetwork

Listed below are 8 of the newest known vulnerabilities associated with the vendor "Iwcnetwork".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2017-17995 json	Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request.	Not Provided	2017-12-30	2025-04-20
CVE-2017-17994 json	Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competency_criteria reques...	Not Provided	2017-12-30	2025-04-20
CVE-2017-17993 json	Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request.	Not Provided	2017-12-30	2025-04-20
CVE-2017-17992 json	Biometric Shift Employee Management System allows Arbitrary File Download via directory traversal sequences in the index.php ...	Not Provided	2017-12-30	2025-04-20
CVE-2017-17991 json	Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request.	Not Provided	2017-12-30	2025-04-20
CVE-2017-17990 json	Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action.	Not Provided	2017-12-30	2025-04-20
CVE-2017-17989 json	Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.	Not Provided	2017-12-30	2025-04-20
CVE-2017-17876 json	Biometric Shift Employee Management System 3.0 allows remote attackers to bypass intended file-read restrictions via a user=d...	Not Provided	2017-12-27	2025-04-20