Vulnerabilities > Trello

DATE CVE VULNERABILITY TITLE RISK
2017-08-02 CVE-2017-9244 Cross-site Scripting vulnerability in Trello 4.0.7
Cross-site scripting (XSS) vulnerability in the Trello app before 4.0.8 for iOS might allow remote attackers to inject arbitrary web script or HTML by uploading and attaching a crafted photo to a Card.
network
low complexity
trello CWE-79
6.1