Vulnerabilities > Enalean

DATE CVE VULNERABILITY TITLE RISK
2018-03-01 CVE-2018-7634 Cross-Site Request Forgery (CSRF) vulnerability in Enalean Tuleap 9.17
An issue was discovered in Enalean Tuleap 9.17.
network
low complexity
enalean CWE-352
8.8
2017-10-30 CVE-2017-7411 Code Injection vulnerability in Enalean Tuleap
An issue was discovered in Enalean Tuleap 9.6 and prior versions.
network
low complexity
enalean CWE-94
8.8
2017-04-29 CVE-2017-7981 OS Command Injection vulnerability in multiple products
Tuleap before 9.7 allows command injection via the PhpWiki 1.3.10 SyntaxHighlighter plugin.
network
low complexity
enalean phpwiki-project CWE-78
8.8