CVE-2025-59040
CVE-2025-59040 concerns Tuleap. Backlog item representations do not verify the permissions of child trackers, potentially allowing users to see tracker names they should not access due to unverified sub-tracker privileges. Affected products: Tuleap Community Edition and Tuleap Enterprise Edition....