13 matches found
CVE-2026-41250
Taiga is a project management platform for startups and agile developers. Prior 6.9.1, Taiga front is vulnerable to stored XSS. This vulnerability is fixed in 6.9.1...
PT-2026-39658
Name of the Vulnerable Software and Affected Versions Taiga versions prior to 6.9.1 Description Taiga, a project management platform for startups and agile developers, contains a stored Cross-Site Scripting XSS issue in its front-end. Stored XSS occurs when an application receives data from a use...
CVE-2025-62368
Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. This issue is fixed in version 6.9.0...
CVE-2025-62368
Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. This issue is fixed in version 6.9.0...
EUVD-2025-36562
Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. This issue is fixed in version 6.9.0...
CVE-2025-62368 Taiga Authenticated Remote Code Execution
Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. This issue is fixed in version 6.9.0...
CVE-2025-62368 Taiga Authenticated Remote Code Execution
Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. This issue is fixed in version 6.9.0...
EUVD-2025-36560
Taiga is an open source project management platform. In versions 6.8.3 and earlier, Taiga API is vulnerable to time-based blind SQL injection allowing sensitive data disclosure via response timing. This issue is fixed in version 6.9.0...
CVE-2025-62367 Taiga Blind SQL Injection Time Based
Taiga is an open source project management platform. In versions 6.8.3 and earlier, Taiga API is vulnerable to time-based blind SQL injection allowing sensitive data disclosure via response timing. This issue is fixed in version 6.9.0...
CVE-2025-62367 Taiga Blind SQL Injection Time Based
Taiga is an open source project management platform. In versions 6.8.3 and earlier, Taiga API is vulnerable to time-based blind SQL injection allowing sensitive data disclosure via response timing. This issue is fixed in version 6.9.0...
PT-2025-44208
Name of the Vulnerable Software and Affected Versions Taiga versions 6.8.3 and earlier Description Taiga is an open source project management platform. A remote code execution issue exists in the Taiga API due to unsafe deserialization of untrusted data. An attacker can execute arbitrary code...
PT-2025-44207
Name of the Vulnerable Software and Affected Versions Taiga versions prior to 6.9.0 Description Taiga, an open source project management platform, has an issue in its API. Versions 6.8.3 and earlier are susceptible to time-based blind SQL injection, potentially leading to the disclosure of...
Taiga 安全漏洞
Taiga is a free open source project management tool from Taiga Open Source. A security vulnerability exists in Taiga version 6.8.1, which stems from the presence of an open redirection vulnerability that allows an attacker to redirect a user to an arbitrary website by appending a crafted link...