8 matches found
EUVD-2022-38088
Malicious code in bioql PyPI...
PT-2024-30200 · Testlink · Testlink
Name of the Vulnerable Software and Affected Versions: TestLink versions prior to 1.9.20 Description: The issue allows for Cross Site Scripting XSS via the pop-up on upload file. When uploading a file, the XSS payload can be entered into the file name. Recommendations: For versions prior to 1.9.2...
CVE-2022-35195
TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...
CVE-2022-35195
TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...
CVE-2022-35195
TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...
Improper access control
TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...
CVE-2022-35195
TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php...
CVE-2022-35195
CVE-2022-35195 affects TestLink 1.9.20 Raijin. The vulnerability is a broken access control in /lib/attachments/attachmentdownload.php, leading to unauthorized disclosure/modification/denial of service as indicated by the CVSSv3.1 base metrics (7.2, HIGH; AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H). Con...