Vulnerabilidades en Enalean
62 resultadosCVE-2021-41147HIGHSQL injection in the planning edition panelEPSS 1.8%CVE-2021-43806HIGHSQL injection in TuleapEPSS 1.5%CVE-2021-41276MEDIUMIndirect LDAP injection in TuleapEPSS 1.5%CVE-2021-41148HIGHThe update of the CI job targeted by a widget is vulnerable to blind SQL injectionsEPSS 1.5%CVE-2021-41155HIGHSQL injection in CVS revisions browserEPSS 1.5%CVE-2021-41154HIGHSQL injection in the "SVN core" commits browserEPSS 1.5%CVE-2021-43782MEDIUMIndirect LDAP injection in TuleapEPSS 1.4%CVE-2022-31058HIGHSQL injection via the field name of a tracker in TuleapEPSS 1.1%CVE-2022-31032MEDIUMResources of private projects can be exposed in TuleapEPSS 0.7%CVE-2022-24896MEDIUMTracker report renderer and chart widgets leak information in TuleapEPSS 0.7%CVE-2021-41142MEDIUMXSS via the name of a deleted attachmentEPSS 0.7%CVE-2024-30246HIGHTuleap deleting or moving an artifact can delete values from unrelated artifactsEPSS 0.6%CVE-2022-39233MEDIUMTuleap subject to Missing Authorization allowing for branch prefix modificationEPSS 0.6%CVE-2024-23344MEDIUMTuleap's content of artifacts might be readable by unauthorized usersEPSS 0.5%CVE-2022-31063MEDIUMCross site scripting via the title of a document in TuleapEPSS 0.5%CVE-2023-38508MEDIUMTuleap allows preview of a linked artifact with a type does not respect permissionsEPSS 0.5%CVE-2023-48715MEDIUMTuleap vulnerable to Cross-site Scripting on the edition page of a releaseEPSS 0.5%CVE-2024-47766MEDIUMPermissions are incorrectly verified for project administrators in the cross tracker search widgetEPSS 0.5%CVE-2022-46160MEDIUMTuleap dashboards vulnerable to Incorrect AuthorizationEPSS 0.5%CVE-2022-31128MEDIUMFine grained permissions are not checked in TuleapEPSS 0.5%