5 matches found
CVE-2024-27703
Cross Site Scripting vulnerability in Leantime 3.0.6 allows a remote attacker to execute arbitrary code via the to-do title parameter...
Leantime allows Cross-Site Scripting (XSS)
Summary There is a cross-site scripting vulnerability on To-Do that affects a title field of a To-Do...
CVE-2024-27703
Cross Site Scripting vulnerability in Leantime 3.0.6 allows a remote attacker to execute arbitrary code via the to-do title parameter...
CVE-2024-27703
Cross Site Scripting vulnerability in Leantime 3.0.6 allows a remote attacker to execute arbitrary code via the to-do title parameter...
PT-2024-21996 · Leantime · Leantime
Name of the Vulnerable Software and Affected Versions: Leantime version 3.0.6 Description: A Cross Site Scripting issue allows a remote attacker to execute arbitrary code via the to-do title parameter. This enables the attacker to perform unauthorized actions on the affected system...