Vulnerabilities > Kiwitcms > Kiwi Tcms > 12.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-05 | CVE-2023-36809 | Cross-site Scripting vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS, an open source test management system allows users to upload attachments to test plans, test cases, etc. | 5.4 |
| 2023-06-06 | CVE-2023-33977 | Cross-site Scripting vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system for both manual and automated testing. | 5.4 |
| 2023-05-27 | CVE-2023-32686 | Cross-site Scripting vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system for both manual and automated testing. | 5.4 |
| 2023-04-24 | CVE-2023-30628 | OS Command Injection vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system. | 8.8 |
| 2023-04-24 | CVE-2023-30544 | Incorrect Authorization vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS is an open source test management system. | 4.3 |
| 2023-04-24 | CVE-2023-30613 | Unrestricted Upload of File with Dangerous Type vulnerability in Kiwitcms Kiwi Tcms Kiwi TCMS, an open source test management system, allows users to upload attachments to test plans, test cases, etc. | 9.0 |