Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
EnaleanTuleap

58 matches found

CVE
CVEadded 2018/09/21 7:29 a.m.29 views

CVE-2018-17298

An issue was discovered in Enalean Tuleap before 10.5. Reset password links are not invalidated after a user changes its password.

9.8CVSS9.4AI score0.00399EPSS
CVE
CVEadded 2021/10/15 2:15 p.m.29 views

CVE-2021-41148

Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments. Prior to version 11.16.99.173 of Community Edition and versions 11.16-6 and 11.15-8 of Enterprise Edition, an attacker with the ability to add one the CI widget to its personal dashbo...

8.8CVSS9AI score0.01407EPSS
CVE
CVEadded 2023/05/04 2:15 p.m.29 views

CVE-2023-30619

Tuleap Open ALM is a Libre and Open Source tool for end to end traceability of application and system developments. The title of an artifact is not properly escaped in the tooltip. A malicious user with the capability to create an artifact or to edit a field title could force victim to execute unco...

5.4CVSS5.6AI score0.00422EPSS
CVE
CVEadded 2023/06/29 8:15 p.m.29 views

CVE-2023-35938

Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration. When switching from a project visibility that allows restricted users to Private without restricted, restricted users that are project administrators keep this access right. Restricted users that ...

7.2CVSS5.5AI score0.00091EPSS
CVE
CVEadded 2024/02/06 4:15 p.m.29 views

CVE-2024-23344

Tuleap is an Open Source Suite to improve management of software developments and collaboration. Some users might get access to restricted information when a process validates the permissions of multiple users (e.g. mail notifications). This issue has been patched in version 15.4.99.140 of Tuleap C...

6.5CVSS6.3AI score0.00129EPSS
CVE
CVEadded 2023/04/20 5:15 p.m.27 views

CVE-2023-23938

Tuleap is a Free & Source tool for end to end traceability of application and system developments. Affected versions are subject to a cross site scripting attack which can be injected in the name of a color of select box values of a tracker and then reflected in the tracker administration. Administ...

5.9CVSS5.2AI score0.00153EPSS
CVE
CVEadded 2025/06/25 4:15 p.m.6 views

CVE-2025-50179

Tuleap is an Open Source Suite to improve management of software developments and collaboration. An attacker could use a cross-site request forgery vulnerability in Tuleap Community Edition prior to version 16.8.99.1749830289 and Tuleap Enterprise Edition prior to version 16.9-1 to trick victims in...

4.6CVSS7.1AI score0.00015EPSS
CVE
CVEadded 2025/06/25 2:15 p.m.5 views

CVE-2025-48991

Tuleap is an Open Source Suite to improve management of software developments and collaboration. An attacker could use a vulnerability present in Tuleap Community Edition prior to version 16.8.99.1748845907 and Tuleap Enterprise Edition prior to versions 16.8-3 and 16.7-5 to trick victims into chan...

4.6CVSS7.1AI score0.00015EPSS
Total number of security vulnerabilities58