Vulnerabilities > Projectsend > Projectsend > r1295
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-01 | CVE-2023-0607 | Cross-site Scripting vulnerability in Projectsend Cross-site Scripting (XSS) - Stored in GitHub repository projectsend/projectsend prior to r1606. | 4.8 |
| 2021-10-11 | CVE-2021-40884 | Missing Authorization vulnerability in Projectsend R1295 Projectsend version r1295 is affected by sensitive information disclosure. | 5.5 |
| 2021-10-11 | CVE-2021-40886 | Path Traversal vulnerability in Projectsend R1295 Projectsend version r1295 is affected by a directory traversal vulnerability. | 4.0 |
| 2021-10-11 | CVE-2021-40887 | Path Traversal vulnerability in Projectsend R1295 Projectsend version r1295 is affected by a directory traversal vulnerability. | 10.0 |
| 2021-10-11 | CVE-2021-40888 | Cross-site Scripting vulnerability in Projectsend R1295 Projectsend version r1295 is affected by Cross Site Scripting (XSS) due to lack of sanitization when echo output data in returnFilesIds() function. | 3.5 |