2 matches found
CVE-2023-3589
CVE-2023-3589 describes a Cross-Site Request Forgery (CSRF) vulnerability in No Magic’s Teamwork Cloud affecting versions No Magic Release 2021x through 2022x . The issue arises from CSRF conditions that allow an attacker to cause the server to process a specially crafted query. External sources ...
CVE-2023-3588
CVE-2023-3588 is a stored Cross-site Scripting (XSS) vulnerability in Teamwork Cloud from No Magic, affecting Release 2021x through Release 2022x. The issue allows an attacker to execute arbitrary script code in the context of the affected web interface. Affected component is the Teamwork Cloud w...