4 matches found
CVE-2025-64482
Tuleap CSRF vulnerability (CVE-2025-64482) affects File Release System in Tuleap Community Edition before 16.13.99.1762267347 and Tuleap Enterprise Edition before 17.01-, 16.13-6, or 16.12-9. The issue arises from lack of cross-site request forgery protections, potentially allowing an attacker to...
PT-2024-40496 · Ez Systems +1 · Ez Platform +4
Name of the Vulnerable Software and Affected Versions: eZ Platform versions prior to 1.13.x with ezsystems/PlatformUIAssetsBundle version 4.2.3 eZ Platform version 2.5.13 with ezsystems/ezplatform-admin-ui-assets version 4.2.1 eZ Platform version 3.0. with ezsystems/ezplatform-admin-ui-assets...
CVE-2023-35808
An issue was discovered in SugarCRM Enterprise before 11.0.6 and 12.x before 12.0.3. An Unrestricted File Upload vulnerability has been identified in the Notes module. By using crafted requests, custom PHP code can be injected and executed through the Notes module because of missing input...
PT-2021-7108 · Unknown +1 · Tuleap Community Edition +3
Name of the Vulnerable Software and Affected Versions: Tuleap versions prior to 13.2.99.31 Community Edition Tuleap versions prior to 13.1-5 Enterprise Edition Tuleap versions prior to 13.2-3 Enterprise Edition Description: The issue arises from improper sanitization of the search filter built fr...