Vulnerabilities in Implem Inc.
9 resultsCVE-2023-32608—Directory traversal vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and earlier versions allows a remote autEPSS 1.2%CVE-2023-30758MEDIUMCross-site scripting vulnerability in Pleasanter 1.3.38.1 and earlier allows a remote authenticated attacker to inject an arbitrary script.EPSS 0.7%CVE-2023-32607—Stored cross-site scripting vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and earlier versions allows a rEPSS 0.5%CVE-2023-46688—Open redirect vulnerability in Pleasanter 1.3.47.0 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary web sEPSS 0.5%CVE-2023-45210MEDIUMPleasanter 1.3.47.0 and earlier contains an improper access control vulnerability, which may allow a remote authenticated attacker to view tEPSS 0.5%CVE-2023-34439—Pleasanter 1.3.47.0 and earlier contains a stored cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary scripEPSS 0.4%CVE-2024-21584MEDIUMPleasanter 1.3.49.0 and earlier contains a cross-site scripting vulnerability. If an attacker tricks the user to access the product with a sEPSS 0.4%CVE-2025-58070MEDIUMPleasanter contains a stored cross-site scripting vulnerability in Preview for Attachments, which allows an attacker to execute an arbitraryEPSS 0.2%CVE-2025-61931MEDIUMPleasanter contains a stored cross-site scripting vulnerability in Body, Description and Comments, which allows an attacker to execute an arEPSS 0.2%