Vulnerabilities > 3DS > Teamwork Cloud NO Magic Release

DATE CVE VULNERABILITY TITLE RISK
2023-10-09 CVE-2023-3589 Cross-Site Request Forgery (CSRF) vulnerability in 3DS Teamwork Cloud NO Magic Release 2021X/2022X
A Cross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x could allow with some very specific conditions an attacker to send a specifically crafted query to the server.
network
high complexity
3ds CWE-352
7.5
7.5
2023-09-13 CVE-2023-3588 Cross-site Scripting vulnerability in 3DS Teamwork Cloud NO Magic Release 2021X/2022X
A stored Cross-site Scripting (XSS) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022x allows an attacker to execute arbitrary script code.
network
low complexity
3ds CWE-79
5.4
5.4