Vulnerabilities > Webtareas Project > Webtareas > Low

DATE CVE VULNERABILITY TITLE RISK
2022-06-16 CVE-2021-36609 Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.2
Cross Site Scripting (XSS) vulnerability in webTareas 2.2p1 via the Name field to /linkedcontent/editfolder.php.
3.5
2022-06-16 CVE-2021-36608 Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.2
Cross Site Scripting (XSS) vulnerability in webTareas 2.2p1 via the Name field to /projects/editproject.php.
3.5
2021-10-08 CVE-2021-41918 Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.0/2.1
webTareas version 2.4 and earlier allows an authenticated user to inject arbitrary web script or HTML due to incorrect sanitization of user-supplied data and achieve a Reflected Cross-Site Scripting attack against the platform users and administrators.
3.5
2021-10-08 CVE-2021-41917 Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.0/2.1
webTareas version 2.4 and earlier allows an authenticated user to store arbitrary web script or HTML by creating or editing a client name in the clients section, due to incorrect sanitization of user-supplied data and achieve a Stored Cross-Site Scripting attack against the platform users and administrators.
3.5
2020-08-26 CVE-2020-23660 Cross-site Scripting vulnerability in Webtareas Project Webtareas 2.1
webTareas v2.1 is affected by Cross Site Scripting (XSS) on "Search."
3.5