Vulnerabilities > Kiwitcms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-05 | CVE-2023-36809 | Cross-site Scripting vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS, an open source test management system allows users to upload attachments to test plans, test cases, etc. | 5.4 |
| 2023-06-06 | CVE-2023-33977 | Cross-site Scripting vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system for both manual and automated testing. | 5.4 |
| 2023-05-27 | CVE-2023-32686 | Cross-site Scripting vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system for both manual and automated testing. | 5.4 |
| 2023-04-24 | CVE-2023-30628 | OS Command Injection vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system. | 8.8 |
| 2023-04-24 | CVE-2023-30544 | Incorrect Authorization vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system. | 4.3 |
| 2023-04-24 | CVE-2023-30613 | Unrestricted Upload of File with Dangerous Type vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS, an open source test management system, allows users to upload attachments to test plans, test cases, etc. | 9.0 |
| 2023-03-29 | CVE-2023-27489 | Cross-site Scripting vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system for both manual and automated testing. | 5.4 |
| 2023-02-15 | CVE-2023-25156 | Improper Restriction of Excessive Authentication Attempts vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS, an open source test management system, does not impose rate limits in versions prior to 12.0. | 9.8 |
| 2023-02-15 | CVE-2023-25171 | Allocation of Resources Without Limits or Throttling vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS, an open source test management system, does not impose rate limits in versions prior to 12.0. | 5.9 |
| 2023-01-02 | CVE-2023-22451 | Weak Password Requirements vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system. | 8.8 |