Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Webtareas
(Webtareas_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 25 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-06-22 | CVE-2020-14973 | The loginForm within the general/login.php webpage in webTareas 2.0p8 suffers from a Reflected Cross Site Scripting (XSS) vulnerability via the query string. | Webtareas | 6.1 | ||
| 2020-08-26 | CVE-2020-23660 | webTareas v2.1 is affected by Cross Site Scripting (XSS) on "Search." | Webtareas | 5.4 | ||
| 2020-09-18 | CVE-2020-25733 | webTareas through 2.1 allows upload of the dangerous .exe and .shtml file types. | Webtareas | 7.5 | ||
| 2020-09-18 | CVE-2020-25734 | webTareas through 2.1 allows files/Default/ Directory Listing. | Webtareas | 5.3 | ||
| 2020-09-18 | CVE-2020-25735 | webTareas through 2.1 allows XSS in clients/editclient.php, extensions/addextension.php, administration/add_announcement.php, administration/departments.php, administration/locations.php, expenses/claim_type.php, projects/editproject.php, and general/newnotifications.php. | Webtareas | 6.1 |