Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13 matches found

NVD
NVDadded 2025/10/27 8:15 a.m.2 views

CVE-2025-12249

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS0.00042EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/10/27 8:2 a.m.5 views

CVE-2025-12249 Axosoft Scrum and Bug Tracking Edit Ticket csv injection

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS0.00042EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/27 8:2 a.m.3 views

EUVD-2025-36134

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS6.3AI score0.00042EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2025/10/27 8:2 a.m.3 views

CVE-2025-12249 Axosoft Scrum and Bug Tracking Edit Ticket csv injection

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS6.4AI score0.00042EPSS
Exploits0References4
CVE
CVEadded 2025/10/27 8:2 a.m.6 views

CVE-2025-12249

CVE-2025-12249 affects Axosoft Scrum and Bug Tracking 22.1.1.11545. The vulnerability lies in the Edit Ticket Page component where manipulating the Title argument enables CSV injection. Exploitation can be remote and the exploit is publicly available. Vendor has not responded. No public informati...

6.5CVSS6.4AI score0.00042EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/10/27 12:0 a.m.2 views

PT-2025-43906

Name of the Vulnerable Software and Affected Versions Axosoft Scrum and Bug Tracking version 22.1.1.11545 Description A flaw exists in Axosoft Scrum and Bug Tracking that allows for CSV injection. The issue is located in the Edit Ticket Page component, specifically through manipulation of the Tit...

6.5CVSS6.1AI score0.00042EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/10/07 6:9 a.m.4 views

CVE-2025-11279

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. This issue affects some unknown processing of the component Add Work Item Page. The manipulation of the argument Title results in csv injection. The attack can be launched remotely. The exploit is now public and may be...

6.5CVSS6.8AI score0.00034EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/05 3:30 a.m.2 views

EUVD-2025-32441

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. This issue affects some unknown processing of the component Add Work Item Page. The manipulation of the argument Title results in csv injection. The attack can be launched remotely. The exploit is now public and may be...

6.5CVSS6.4AI score0.00034EPSS
Exploits0References5
NVD
NVDadded 2025/10/05 3:15 a.m.4 views

CVE-2025-11279

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. This issue affects some unknown processing of the component Add Work Item Page. The manipulation of the argument Title results in csv injection. The attack can be launched remotely. The exploit is now public and may be...

6.5CVSS0.00034EPSS
Exploits0References4
CVE
CVEadded 2025/10/05 3:2 a.m.8 views

CVE-2025-11279

The CVE-2025-11279 entry concerns Axosoft Scrum and Bug Tracking 22.1.1.11545. The vulnerability affects the Add Work Item Page, where manipulation of the Title argument leads to a CSV injection. It is a network-accessible issue with low privileges and low impact on confidentiality, integrity, an...

6.5CVSS6.6AI score0.00034EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/10/05 3:2 a.m.2 views

CVE-2025-11279 Axosoft Scrum and Bug Tracking Add Work Item csv injection

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. This issue affects some unknown processing of the component Add Work Item Page. The manipulation of the argument Title results in csv injection. The attack can be launched remotely. The exploit is now public and may be...

6.5CVSS5.5AI score0.00034EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/10/05 12:0 a.m.3 views

Axosoft Scrum and Bug Tracking 安全漏洞

Axosoft Scrum and Bug Tracking is an Agile project management and defect tracking software from Axosoft Corporation, USA. A security vulnerability exists in Axosoft Scrum and Bug Tracking version 22.1.1.11545, which stems from an incorrect manipulation of the parameter Title in the Add Work Item...

6.5CVSS5.6AI score0.00034EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/10/05 12:0 a.m.3 views

PT-2025-40789

Name of the Vulnerable Software and Affected Versions Axosoft Scrum and Bug Tracking version 22.1.1.11545 Description A CSV injection issue exists in Axosoft Scrum and Bug Tracking version 22.1.1.11545, specifically within the Add Work Item Page component. The Title argument is susceptible to...

6.5CVSS5.4AI score0.00034EPSS
Exploits0References9
Rows per page
Query Builder