Vulnerabilities in projectsend
7 resultsCVE-2024-11680CRITICALProjectSend Unauthenticated Configuration ModificationEPSS 91.6%KEVCVE-2023-53980HIGHProjectSend r1605 Remote Code Execution via File Extension ManipulationEPSS 0.8%CVE-2023-0607HIGHCross-site Scripting (XSS) - Stored in projectsend/projectsendEPSS 0.7%CVE-2023-53905MEDIUMProjectSend r1605 CSV Injection via User Account Export FunctionalityEPSS 0.4%CVE-2023-53930HIGHProjectSend r1605 Insecure Direct Object Reference File Download VulnerabilityEPSS 0.3%CVE-2023-53906MEDIUMProjectSend r1605 Stored Cross-Site Scripting via Custom Assets PageEPSS 0.3%CVE-2021-47947MEDIUMProjectsend r1295 Stored Cross-Site Scripting via files-edit.phpEPSS 0.2%