Vulnerabilities > Burden Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-15 | CVE-2022-24589 | Cross-site Scripting vulnerability in Burden Project Burden 3.0 Burden v3.0 was discovered to contain a stored cross-site scripting (XSS) in the Add Category function. | 4.3 |
| 2014-01-26 | CVE-2013-7137 | Improper Authentication vulnerability in Burden Project Burden The "remember me" functionality in login.php in Burden before 1.8.1 allows remote attackers to bypass authentication and gain privileges by setting the burden_user_rememberme cookie to 1. | 7.5 |