Lucene search
+L

776 matches found

Vulnrichment
Vulnrichment
added 2026/01/15 3:52 p.m.3 views

CVE-2021-47819 ProjeQtOr Project Management 9.1.4 - Remote Code Execution

ProjeQtOr Project Management 9.1.4 contains a file upload vulnerability that allows guest users to upload malicious PHP files with arbitrary code execution capabilities. Attackers can upload a PHP script through the profile attachment section and execute system commands by accessing the uploaded...

9.8CVSS7.9AI score0.00381EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/15 3:52 p.m.14 views

EUVD-2026-2750

ProjeQtOr Project Management 9.1.4 contains a file upload vulnerability that allows guest users to upload malicious PHP files with arbitrary code execution capabilities. Attackers can upload a PHP script through the profile attachment section and execute system commands by accessing the uploaded...

9.8CVSS7.8AI score0.00381EPSS
Exploits0References3
CVE
CVE
added 2026/01/15 3:52 p.m.16 views

CVE-2021-47819

CVE-2021-47819 affects ProjeQtOr Project Management 9.1.4. A file upload vulnerability in the profile attachment feature allows guest users to upload PHP files, enabling arbitrary code execution by accessing the uploaded file with a crafted request parameter. Metrics indicate critical impact on c...

9.8CVSS7.9AI score0.00381EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.13 views

PT-2026-3056

ProjeQtOr Project Management 9.1.4 contains a file upload vulnerability that allows guest users to upload malicious PHP files with arbitrary code execution capabilities. Attackers can upload a PHP script through the profile attachment section and execute system commands by accessing the uploaded...

9.8CVSS8.3AI score0.00381EPSS
Exploits0References3
OSV
OSV
added 2026/01/08 12:59 a.m.6 views

CVE-2026-21880 Kanboard LDAP Injection Vulnerability can Lead to User Enumeration and Information Disclosure

Kanboard is project management software focused on Kanban methodology. Versions 1.2.48 and below have an LDAP Injection vulnerability in the LDAP authentication mechanism. User-supplied input is directly substituted into LDAP search filters without proper sanitization, allowing attackers to...

5.3CVSS6.8AI score0.00352EPSS
Exploits2References5
NVD
NVD
added 2026/01/02 4:17 p.m.8 views

CVE-2025-69284

Plane is an an open-source project management tool. In plane.io, a guest user doesn't have a permission to access https://app.plane.so/:slug/settings. Prior to Plane version 1.2.0, a problem occurs when the /api/workspaces/:slug/members/ is accessible by guest and able to list of users on a...

4.3CVSS0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/02 3:42 p.m.24 views

CVE-2025-69284 In plane.io, a Guest User to a Workspace can still be able to see list of members

Plane is an an open-source project management tool. In plane.io, a guest user doesn't have a permission to access https://app.plane.so/:slug/settings. Prior to Plane version 1.2.0, a problem occurs when the /api/workspaces/:slug/members/ is accessible by guest and able to list of users on a...

4.3CVSS0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/02 3:42 p.m.7 views

EUVD-2025-206228

Plane is an an open-source project management tool. In plane.io, a guest user doesn't have a permission to access https://app.plane.so/:slug/settings. Prior to Plane version 1.2.0, a problem occurs when the /api/workspaces/:slug/members/ is accessible by guest and able to list of users on a...

4.3CVSS6.2AI score0.00162EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/02 12:0 a.m.11 views

PT-2026-1101

Name of the Vulnerable Software and Affected Versions Plane versions prior to 1.2.0 Description Plane is an open-source project management tool. A guest user, lacking the necessary permissions, could access the /api/workspaces/:slug/members/ endpoint and list users within a workspace they have...

4.3CVSS6.6AI score0.00162EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/05 12:0 a.m.12 views

PT-2025-49234

The Projectopia – WordPress Project Management plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pto delete file AJAX action in all versions up to, and including, 5.1.19. This makes it possible for unauthenticated attackers to delete...

5.3CVSS5.5AI score0.00297EPSS
Exploits0References3
CNVD
CNVD
added 2025/12/05 12:0 a.m.4 views

SQL Injection Vulnerability in PM2 Project Management Platform of Beijing Bangyong Technology Co. Ltd (CNVD-C-2025-983218)

Ltd. is a professional project management software provider, providing advanced and practical project management software and project management informationization related consulting. SQL injection vulnerability exists in the PM2 project management platform of Beijing BangYong Technology Co., Ltd...

5.9AI score
Exploits0
CVE
CVE
added 2025/10/28 8:8 p.m.30 views

CVE-2025-62368

Taiga CVE-2025-62368 affects Taiga Open Source Project Management

9CVSS7.7AI score0.01405EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/10/14 2:46 a.m.11 views

CVE-2025-11656

A weakness has been identified in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. This affects an unknown function of the file /assets/editNotes.php. Executing manipulation of the argument File can lead to unrestricted upload. The attack can be launche...

9.8CVSS6.6AI score0.00547EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-5836

Malware in sbrugna...

8.8CVSS6AI score0.00968EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2016-4599

Malware in sbrugna...

6.1CVSS6.4AI score0.01673EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6485

Malware in sbrugna...

8.8CVSS8.8AI score0.00614EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.18 views

EUVD-2018-0238

Malware in sbrugna...

7.5CVSS7.5AI score0.01177EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-5864

Malware in sbrugna...

7.4CVSS7.5AI score0.01036EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-14500

Malware in sbrugna...

6.1CVSS6.3AI score0.00655EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-3699

Malware in sbrugna...

4CVSS6.3AI score0.00871EPSS
Exploits0References2
Rows per page
Query Builder