Tuleap is an application lifecycle management system that facilitates agile software development, design projects, V-models, requirements management and IT service management.A cross-site scripting vulnerability exists in versions prior to Tuleap 13.9.99.111, which stems from a failure to properly escape documents in the MyDocmanSearch widget’s search results and locked documents’ administration pages title. An attacker could exploit this vulnerability to force a victim to execute uncontrolled code.
CPE | Name | Operator | Version |
---|---|---|---|
Tuleap Tuleap <13. | eq | 9.99.111 |