25 matches found
CVE-2020-25400
Cross domain policies in Taskcafe Project Management tool before version 0.1.0 and 0.1.1 allows remote attackers to access sensitive data such as access token...
Cross site scripting
Cross domain policies in Taskcafe Project Management tool before version 0.1.0 and 0.1.1 allows remote attackers to access sensitive data such as access token...
CVE-2020-25400
Cross domain policies in Taskcafe Project Management tool before version 0.1.0 and 0.1.1 allows remote attackers to access sensitive data such as access token...
CVE-2020-25400
CVE-2020-25400 affects Taskcafe Project Management tool versions before 0.1.0 and 0.1.1, where cross domain policies allow remote attackers to access sensitive data such as access tokens. The CVE entry indicates a high impact (CVSS3.1 base score 7.5) with network-based, low-complexity access and ...
Jordanknott Taskcafe Information Disclosure Vulnerability
Jordanknott Taskcafe is a project management tool developed in Go language by Jordanknott. A security vulnerability exists in Taskcafe Project Management tool versions prior to 0.1.0 and 0.1.1, which stems from a cross-domain policy that allows remote attackers to access sensitive data such as...