Vulnerabilities > Enalean > Tuleap > 9.13

DATE CVE VULNERABILITY TITLE RISK
2018-09-21 CVE-2018-17298 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Enalean Tuleap
An issue was discovered in Enalean Tuleap before 10.5.
network
low complexity
enalean CWE-640
5.0
5.0
2018-03-12 CVE-2018-7538 SQL Injection vulnerability in Enalean Tuleap
A SQL injection vulnerability in the tracker functionality of Enalean Tuleap software engineering platform before 9.18 allows attackers to execute arbitrary SQL commands.
network
low complexity
enalean CWE-89
7.5
7.5