Lucene search
K

4 matches found

Cvelist
Cvelist
added 2025/10/27 8:2 a.m.12 views

CVE-2025-12249 Axosoft Scrum and Bug Tracking Edit Ticket csv injection

A vulnerability was detected in Axosoft Scrum and Bug Tracking 22.1.1.11545. The impacted element is an unknown function of the component Edit Ticket Page. Performing manipulation of the argument Title results in csv injection. It is possible to initiate the attack remotely. The exploit is now...

6.5CVSS0.00264EPSS
Exploits0References4
CVE
CVE
added 2025/10/27 8:2 a.m.19 views

CVE-2025-12249

CVE-2025-12249 affects Axosoft Scrum and Bug Tracking 22.1.1.11545. The vulnerability lies in the Edit Ticket Page component where manipulating the Title argument enables CSV injection. Exploitation can be remote and the exploit is publicly available. Vendor has not responded. No public informati...

6.5CVSS6.4AI score0.00264EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.5 views

Axosoft Scrum and Bug Tracking 安全漏洞

Axosoft Scrum and Bug Tracking is an Agile project management and defect tracking software from Axosoft Corporation, USA. A security vulnerability exists in Axosoft Scrum and Bug Tracking version 22.1.1.11545, which stems from an incorrect manipulation of the parameter Title in the component Edit...

6.5CVSS6.6AI score0.00264EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/05 12:0 a.m.5 views

Axosoft Scrum and Bug Tracking 安全漏洞

Axosoft Scrum and Bug Tracking is an Agile project management and defect tracking software from Axosoft Corporation, USA. A security vulnerability exists in Axosoft Scrum and Bug Tracking version 22.1.1.11545, which stems from an incorrect manipulation of the parameter Title in the Add Work Item...

6.5CVSS5.6AI score0.00208EPSS
Exploits0References4
Rows per page
Query Builder