Vulnerabilities > Enalean

DATE CVE VULNERABILITY TITLE RISK
2022-06-09 CVE-2022-24896 Unspecified vulnerability in Enalean Tuleap
Tuleap is a Free & Open Source Suite to manage software developments and collaboration.
network
low complexity
enalean
4.3
2021-12-15 CVE-2021-41276 Injection vulnerability in Enalean Tuleap
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-74
7.2
2021-12-15 CVE-2021-43782 Injection vulnerability in Enalean Tuleap
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-74
7.2
2021-10-18 CVE-2021-41154 SQL Injection vulnerability in Enalean Tuleap
Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration.
network
low complexity
enalean CWE-89
8.8
2021-10-18 CVE-2021-41155 SQL Injection vulnerability in Enalean Tuleap
Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration.
network
low complexity
enalean CWE-89
8.8
2021-10-15 CVE-2021-41147 SQL Injection vulnerability in Enalean Tuleap 11.151/11.161
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-89
7.2
2021-10-15 CVE-2021-41148 SQL Injection vulnerability in Enalean Tuleap 11.151/11.161
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-89
8.8
2021-10-14 CVE-2021-41142 Cross-site Scripting vulnerability in Enalean Tuleap
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments.
network
low complexity
enalean CWE-79
5.4
2018-09-21 CVE-2018-17298 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Enalean Tuleap
An issue was discovered in Enalean Tuleap before 10.5.
network
low complexity
enalean CWE-640
critical
9.8
2018-03-12 CVE-2018-7538 SQL Injection vulnerability in Enalean Tuleap
A SQL injection vulnerability in the tracker functionality of Enalean Tuleap software engineering platform before 9.18 allows attackers to execute arbitrary SQL commands.
network
low complexity
enalean CWE-89
critical
9.8