Vulnerabilities > Teamwork Management System Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-04 | CVE-2023-50630 | Cross-site Scripting vulnerability in Teamwork Management System Project Teamwork Management System 2.28.0 Cross Site Scripting (XSS) vulnerability in xiweicheng TMS v.2.28.0 allows a remote attacker to execute arbitrary code via a crafted script to the click here function. | 6.1 |
| 2022-03-20 | CVE-2022-26247 | Incorrect Permission Assignment for Critical Resource vulnerability in Teamwork Management System Project Teamwork Management System 2.28.0 TMS v2.28.0 contains an insecure permissions vulnerability via the component /TMS/admin/user/Update2. | 5.9 |