Vulnerabilities > Enalean

DATE CVE VULNERABILITY TITLE RISK
2021-12-15 CVE-2021-41276 LDAP Injection vulnerability in Enalean Tuleap 11.16.99.173/11.17.99.144/11.17.99.146
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments.
network
enalean CWE-90
6.0
2021-12-15 CVE-2021-43782 LDAP Injection vulnerability in Enalean Tuleap 11.16.99.173/11.17.99.144/11.17.99.146
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments.
network
enalean CWE-90
6.0
2021-12-15 CVE-2021-43806 SQL Injection vulnerability in Enalean Tuleap 11.16.99.173/11.17.99.144/11.17.99.146
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-89
6.5
2021-10-18 CVE-2021-41154 SQL Injection vulnerability in Enalean Tuleap
Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration.
network
low complexity
enalean CWE-89
6.5
2021-10-18 CVE-2021-41155 SQL Injection vulnerability in Enalean Tuleap
Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration.
network
low complexity
enalean CWE-89
6.5
2021-10-15 CVE-2021-41147 SQL Injection vulnerability in Enalean Tuleap 11.151/11.161
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-89
6.5
2021-10-15 CVE-2021-41148 SQL Injection vulnerability in Enalean Tuleap 11.151/11.161
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-89
6.5
2021-10-14 CVE-2021-41142 Cross-site Scripting vulnerability in Enalean Tuleap
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments.
network
enalean CWE-79
3.5
2018-09-21 CVE-2018-17298 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Enalean Tuleap
An issue was discovered in Enalean Tuleap before 10.5.
network
low complexity
enalean CWE-640
5.0
2018-03-12 CVE-2018-7538 SQL Injection vulnerability in Enalean Tuleap
A SQL injection vulnerability in the tracker functionality of Enalean Tuleap software engineering platform before 9.18 allows attackers to execute arbitrary SQL commands.
network
low complexity
enalean CWE-89
7.5