313 matches found
webTareas Code Issues Vulnerabilities
webTareas is a web-based open source collaboration tool. The product supports features such as project management, bug tracking, content management and meeting management. A security vulnerability exists in webTareas 2.4 and earlier versions that allows an attacker to exploit the platform by...
webTareas Cross-Site Scripting Vulnerability (CNVD-2021-85276)
webTareas is a web-based open source collaboration tool. The product supports features such as project management, bug tracking, content management and meeting management. A security vulnerability exists in webTareas, which can be exploited by an attacker to store arbitrary web script or HTML by...
CVE-2021-3709
Function checkattachmentforerrors in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versions prior to 2.20.1-0ubuntu2.30+esm2; 2.20.9 versions prior to...
webTareas path traversal vulnerability
webTareas is a Web-based open source collaboration tool. The product supports project management, bug tracking, content management and meeting management. webTareas version 2.0 has a path traversal vulnerability, which stems from the fact that the extpath parameter in generalserv .php is not...
JetBrains YouTrack Security Feature Issue Vulnerability
JetBrains YouTrack is a browser-based bug tracking and project management software from JetBrains Czech Republic. JetBrains YouTrack is vulnerable to a security feature that could be exploited by remote attackers to access sensitive information...
JetBrains YouTrack has an unspecified vulnerability (CNVD-2022-09228)
JetBrains YouTrack is a browser-based bug tracking and project management software from JetBrains Czech Republic. JetBrains YouTrack contains a security vulnerability that could be exploited by remote attackers to bypass implemented security restrictions...
JetBrains YouTrack Elevation of Privilege Vulnerability
JetBrains YouTrack is a browser-based bug tracking and project management software from JetBrains Czech Republic. JetBrains YouTrack has an elevation of privilege vulnerability that could be exploited by an attacker to bypass implemented security restrictions and elevate privileges on the system...
CVE-2021-21443
Agents are able to list customer user emails without required permissions in the bulk action screen. This issue affects: OTRS AG OTRS Community Edition: 6.0.x version 6.0.1 and later versions. OTRS AG OTRS: 7.0.x versions prior to 7.0.27...
[SECURITY] Fedora 34 Update: fossil-2.14.2-1.fc34
Fossil is a simple, high-reliability, distributed software configuration management with distributed bug tracking, distributed wiki and built-in web interface...
CVE-2021-3475
There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to be processed by OpenEXR could cause an integer overflow, potentially leading to problems with application availability...
SourceForge Kagemai Cross-Site Scripting Vulnerability (CNVD-2021-24011)
SourceForge Organization kagemai is an application of the Japanese open source SourceForge Organization . A Web-based bug tracking system BTS. Kagemai 0.8.6 suffers from a cross-site scripting vulnerability that can be exploited by an attacker to execute arbitrary script in a user's web browser...
SourceForge Kagemai Cross-Site Scripting Vulnerability
SourceForge Organization kagemai is an application of the Japanese open source SourceForge Organization . A Web-based bug tracking system BTS. Kagemai 0.8.6 suffers from a cross-site scripting vulnerability that could allow an attacker to execute arbitrary script in a user's web browser...
Kagemai vulnerable to cross-site scripting
Overview Kagemai provided by daifukuya.com is a bug tracking system to share bug information of the software being developed among its development team. Kagemai contains a cross-site scripting vulnerability CWE-79. During the meeting of Committee for authorizing the disclosure of unresolved...
SourceForge Kagemai 跨站脚本漏洞
SourceForge Organization kagemai is an application of the Japanese open source SourceForge Organization . A Web-based bug tracking system BTS. Kagemai 0.8.6 suffers from a cross-site scripting vulnerability that could allow an attacker to execute arbitrary script in a user's web browser...
JVN#12559271: Kagemai vulnerable to cross-site scripting
Kagemai provided by daifukuya.com is a bug tracking system to share bug information of the software being developed among its development team. Kagemai contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser. Solution Consider sto...
JVN#11438679: Kagemai vulnerable to cross-site request forgery
Kagemai provided by daifukuya.com is a bug tracking system to share bug information of the software being developed among its development team. Kagemai contains a cross-site request forgery vulnerability CWE-352 which allows unintended operations if a user with an administrative privilege views a...
JVN#42220311: Kagemai vulnerable to cross-site scripting
Kagemai provided by daifukuya.com is a bug tracking system to share bug information of the software being developed among its development team. Kagemai contains a stored cross-site scripting vulnerability CWE-79 which allows an unintended script execution on the web browser of the user who can...
Unspecified Vulnerability in JetBrains YouTrack (CNVD-2021-09914)
JetBrains YouTrack is a browser-based bug tracking and project management software from the Czech company JetBrains. The software features bug tracking, creating workflows and monitoring project progress. A security vulnerability exists in JetBrains YouTrack before 2020.6.1767, which stems from a...
Unspecified Vulnerability in JetBrains YouTrack
JetBrains YouTrack is a browser-based bug tracking and project management software from the Czech company JetBrains. The software features bug tracking, creating workflows and monitoring project progress. A security vulnerability exists in JetBrains YouTrack that stems from doing improper resourc...
CVE-2020-29604
MantisBT before 2.24.4 suffers a missing access check in bug_actiongroup.php, enabling a user with rights to create issues to copy a private issue (via bug_arr[]) and clone it with all bugnotes and attachments, exposing confidential data. Affected: MantisBT