3 matches found
CVE-2023-30619
CVE-2023-30619 affects Tuleap Open ALM. The vulnerability is an XSS in the tooltip caused by the artifact title not being properly escaped, which could allow a user with permissions to create an artifact or edit a field title to force execution of malicious code. Affected versions are before 14.7...
CVE-2023-30619 XSS in the tooltip via an artifact title
Tuleap Open ALM is a Libre and Open Source tool for end to end traceability of application and system developments. The title of an artifact is not properly escaped in the tooltip. A malicious user with the capability to create an artifact or to edit a field title could force victim to execute...
CVE-2023-30619 XSS in the tooltip via an artifact title
Tuleap Open ALM is a Libre and Open Source tool for end to end traceability of application and system developments. The title of an artifact is not properly escaped in the tooltip. A malicious user with the capability to create an artifact or to edit a field title could force victim to execute...