3 matches found
CVE-2023-35929
Tuleap is a free and open source suite to improve management of software development and collaboration. Prior to version 14.10.99.4 of Tuleap Community Edition and prior to versions 14.10-2 and 14.9-5 of Tuleap Enterprise Edition, content displayed in the "card fields" visible in the kanban and P...
CVE-2023-35929 Tuleap Cross-site Scripting vulnerability in the card field of the agile dashboard apps
Tuleap is a free and open source suite to improve management of software development and collaboration. Prior to version 14.10.99.4 of Tuleap Community Edition and prior to versions 14.10-2 and 14.9-5 of Tuleap Enterprise Edition, content displayed in the "card fields" visible in the kanban and P...
CVE-2023-35929
Tuleap CVE-2023-35929 is a cross-site scripting vulnerability in card fields of the kanban and PV2 apps. The issue occurs when content displayed in card fields is not properly escaped, allowing a malicious user who can create an artifact or edit a card-field to cause script execution. Affected ve...