CVE-2025-55454

An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2025-55455

DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext...

CVE-2025-55455

DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext...

CVE-2025-55454

An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2025-55454

An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2025-55455

DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext...

CVE-2025-55455

DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext...

PT-2025-34488 · Dootask · Dootask

Name of the Vulnerable Software and Affected Versions: DooTask version 1.0.51 Description: An authenticated arbitrary file upload issue exists in the /msg/sendfiles component of DooTask version 1.0.51. This allows attackers to execute arbitrary code by uploading a crafted file. Recommendations: A...

dootask 安全漏洞

dootask is an open source online project task management tool from dootask, Inc. A security vulnerability exists in dootask version 1.0.51, which stems from an authentication arbitrary download issue in the /msg/sendtext component...

CVE-2025-55454

An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file...

CVE-2025-55455

The CVE-2025-55455 entry affects DooTask v1.0.51 and describes an authenticated arbitrary file download vulnerability in the /msg/sendtext component. According to the sources, the issue has a CVSS v3.1 base score of 3.5 (LOW) with network attack vector, low privileges required, user interaction r...

CVE-2025-55454

An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file...

dootask 安全漏洞

dootask is an open source online project task management tool from dootask, Inc. A security vulnerability exists in dootask version 1.0.51, which stems from an authenticated arbitrary file upload issue in the /msg/sendfiles component that could lead to the execution of arbitrary code...

PT-2025-34498 · Dootask · Dootask

Name of the Vulnerable Software and Affected Versions: DooTask version 1.0.51 Description: DooTask version 1.0.51 contains an authenticated arbitrary download vulnerability within the /msg/sendtext component. Recommendations: At the moment, there is no information about a newer version that...

CVE-2025-55454

CVE-2025-55454 affects DooTask v1.0.51. An authenticated arbitrary file upload weakness in the /msg/sendfiles component allows code execution via a crafted file. Root cause: improper handling of uploaded files enabling execution of attacker-controlled content. Impact: potential remote code execut...

CVE-2024-34906

An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file...

CVE-2024-34906

An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file...

CVE-2024-34906

The CVE-2024-34906 entry concerns an arbitrary file upload vulnerability in dootask v0.30.13 that allows an attacker to execute arbitrary code by uploading a crafted PDF file. The connected documents corroborate a PDF-based upload flaw affecting dootask 0.30.13, enabling code execution upon succe...

CVE-2024-34906

An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file...

CVE-2024-34906

An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file...