27 matches found
CVE-2024-55045
Firmament-Autopilot FMT-Firmware commit de5aec was discovered to contain a buffer overflow via the taskmavobcentry function at /comm/taskcomm.c...
CVE-2026-26225
Intego Personal Backup, a macOS backup utility that allows users to create scheduled backups and bootable system clones, contains a local privilege escalation vulnerability. Backup task definitions are stored in a location writable by non-privileged users while being processed with elevated...
CVE-2026-26225 Intego Personal Backup Task File Privilege Escalation
Intego Personal Backup, a macOS backup utility that allows users to create scheduled backups and bootable system clones, contains a local privilege escalation vulnerability. Backup task definitions are stored in a location writable by non-privileged users while being processed with elevated...
CVE-2026-26225 Intego Personal Backup Task File Privilege Escalation
Intego Personal Backup, a macOS backup utility that allows users to create scheduled backups and bootable system clones, contains a local privilege escalation vulnerability. Backup task definitions are stored in a location writable by non-privileged users while being processed with elevated...
CVE-2026-26225
Intego Personal Backup on macOS is affected by a local privilege escalation due to processing of crafted serialized task files. Task definitions are stored in a location writable by non-privileged users, but are processed with elevated privileges, allowing an attacker to perform arbitrary file wr...
PT-2026-7916
Intego Personal Backup, a macOS backup utility that allows users to create scheduled backups and bootable system clones, contains a local privilege escalation vulnerability. Backup task definitions are stored in a location writable by non-privileged users while being processed with elevated...
CVE-2025-55011
Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.47, the createTaskFile method in the API does not validate whether the taskid parameter is a valid task id, nor does it check for path traversal. As a result, a malicious actor could write a file...
CVE-2025-55011 Kanboard Path Traversal in File Write via Task File Upload Api
Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.47, the createTaskFile method in the API does not validate whether the taskid parameter is a valid task id, nor does it check for path traversal. As a result, a malicious actor could write a file...
CVE-2025-55011 Kanboard Path Traversal in File Write via Task File Upload Api
Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.47, the createTaskFile method in the API does not validate whether the taskid parameter is a valid task id, nor does it check for path traversal. As a result, a malicious actor could write a file...
CVE-2025-55011 Kanboard Path Traversal in File Write via Task File Upload Api
Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.47, the createTaskFile method in the API does not validate whether the taskid parameter is a valid task id, nor does it check for path traversal. As a result, a malicious actor could write a file...
CVE-2025-55011
Kanboard prior to version 1.2.47 is affected by a path-traversal/file-write vulnerability in the API’s createTaskFile handler. The issue arises because task_id validation is missing and path traversal is not checked, allowing a malicious actor to write files to arbitrary locations reachable by th...
CVE-2025-4248
CVE-2025-4248 affects SourceCodester Simple To-Do List System 1.0. The vulnerability arises in the file /complete_task.php where manipulating the ID parameter enables SQL injection. Multiple connected sources confirm remote exploitation and public disclosure of the exploit. Impact is described ac...
CVE-2024-7792
A vulnerability was found in SourceCodester Task Progress Tracker 1.0. It has been classified as critical. Affected is an unknown function of the file /endpoint/delete-task.php. The manipulation of the argument task leads to sql injection. It is possible to launch the attack remotely. The exploit...
PT-2024-24471 · Sourcecodester · Sourcecodester Php Task Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester PHP Task Management System version 1.0 Description: A critical issue was found in the SourceCodester PHP Task Management System, affecting some unknown functionality of the file edit-task.php. The manipulation of the task id...
CVE-2024-2570
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file /edit-task.php. The manipulation leads to execution after redirect. It is possible to initiate the attack remotely. The exploit has been...
PT-2024-21121 · Sourcecodester · Sourcecodester Employee Task Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Task Management System version 1.0 Description: A critical vulnerability was found in the SourceCodester Employee Task Management System, affecting an unknown functionality of the file /edit-task.php. The manipulation ...
Task Manager SQL Injection Vulnerability
Task Manager is a Code-Projects open source task manager application . Task Manager v1.0 SQL injection vulnerability , the vulnerability stems from the file / TaskManager / EditTask.php SQL injection vulnerability...
CVE-2023-0903
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file edit-task.php. The manipulation of the argument taskid leads to sql injection. The attack can be initiated remotely. The complexit...
PT-2023-16605 · Sourcecodester · Sourcecodester Employee Task Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Task Management System version 1.0 Description: A critical issue has been found in the system, affecting the file edit-task.php. The manipulation of the task id argument leads to SQL injection. The attack can be...
PT-2022-11622 · Unknown · Ctrlo Lenio
Name of the Vulnerable Software and Affected Versions: ctrlo lenio affected versions not specified Description: A vulnerability was found in the Task Handler component, affecting the file views/task.tt. The manipulation of the argument site.org.name/check.name/task.tasktype.name/task.name leads t...