Vulnerabilities > Plane

DATE	CVE	VULNERABILITY TITLE	RISK
2023-07-15	CVE-2023-2268	Missing Authorization vulnerability in Plane 0.7.1 Plane version 0.7.1 allows an unauthenticated attacker to view all stored server files of all users. network low complexity plane CWE-862	7.5
2023-07-15	CVE-2023-30791	Unrestricted Upload of File with Dangerous Type vulnerability in Plane 0.7.1 Plane version 0.7.1-dev allows an attacker to change the avatar of his profile, which allows uploading files with HTML extension that interprets both HTML and JavaScript. network low complexity plane CWE-434	4.6

Vulnerabilities > Plane {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Plane"}]}