Lucene search
K

4 matches found

NVD
NVD
added 2023/12/11 7:15 p.m.26 views

CVE-2023-48715

Tuleap is an open source suite to improve management of software developments and collaboration. Prior to version 15.2.99.103 of Tuleap Community Edition and prior to versions 15.2-4 and 15.1-8 of Tuleap Enterprise Edition, the name of the releases are not properly escaped on the edition page of ...

5.4CVSS0.00519EPSS
Exploits0References4
CVE
CVE
added 2023/12/11 6:40 p.m.71 views

CVE-2023-48715

CVE-2023-48715 affects Tuleap Community Edition and Tuleap Enterprise Edition. The root cause is that release names were not properly escaped on the edition page, enabling a malicious user who can create an FRS release to cause a user with write permissions to execute uncontrolled code. Affected ...

5.4CVSS5.5AI score0.00519EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/12/11 6:40 p.m.18 views

CVE-2023-48715 Tuleap vulnerable to Cross-site Scripting on the edition page of a release

Tuleap is an open source suite to improve management of software developments and collaboration. Prior to version 15.2.99.103 of Tuleap Community Edition and prior to versions 15.2-4 and 15.1-8 of Tuleap Enterprise Edition, the name of the releases are not properly escaped on the edition page of ...

5.4CVSS5.7AI score0.00519EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/12/11 6:40 p.m.27 views

CVE-2023-48715 Tuleap vulnerable to Cross-site Scripting on the edition page of a release

Tuleap is an open source suite to improve management of software developments and collaboration. Prior to version 15.2.99.103 of Tuleap Community Edition and prior to versions 15.2-4 and 15.1-8 of Tuleap Enterprise Edition, the name of the releases are not properly escaped on the edition page of ...

5.4CVSS5.8AI score0.00519EPSS
Exploits0References4
Rows per page
Query Builder