Tuleap is an application lifecycle management system that facilitates agile software development, design projects, V-models, requirements management, and IT service management. SQL injection vulnerabilities exist in versions of Tuleap prior to 13.9.99.95, which stem from a failure of Tuleap to properly clean up user input when constructing SQL queries to retrieve data reported by the tracker. An attacker could exploit this vulnerability to execute arbitrary SQL queries.
CPE | Name | Operator | Version |
---|---|---|---|
Tuleap Tuleap <13. | eq | 9.99.95 |