Vulnerabilities > Webtareas Project > Webtareas > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-06-16 | CVE-2021-36609 | Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.2 Cross Site Scripting (XSS) vulnerability in webTareas 2.2p1 via the Name field to /linkedcontent/editfolder.php. | 3.5 |
2022-06-16 | CVE-2021-36608 | Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.2 Cross Site Scripting (XSS) vulnerability in webTareas 2.2p1 via the Name field to /projects/editproject.php. | 3.5 |
2021-10-08 | CVE-2021-41918 | Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.0/2.1 webTareas version 2.4 and earlier allows an authenticated user to inject arbitrary web script or HTML due to incorrect sanitization of user-supplied data and achieve a Reflected Cross-Site Scripting attack against the platform users and administrators. | 3.5 |
2021-10-08 | CVE-2021-41917 | Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.0/2.1 webTareas version 2.4 and earlier allows an authenticated user to store arbitrary web script or HTML by creating or editing a client name in the clients section, due to incorrect sanitization of user-supplied data and achieve a Stored Cross-Site Scripting attack against the platform users and administrators. | 3.5 |
2020-08-26 | CVE-2020-23660 | Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.1 webTareas v2.1 is affected by Cross Site Scripting (XSS) on "Search." | 3.5 |