Vulnerabilities > Zephyr Project Manager Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-29 | CVE-2023-31237 | Unspecified vulnerability in Zephyr Project Manager Project Zephyr Project Manager URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager: from n/a through 3.3.9. | 6.1 |
| 2023-06-19 | CVE-2023-34373 | Unspecified vulnerability in Zephyr Project Manager Project Zephyr Project Manager Cross-Site Request Forgery (CSRF) vulnerability in Dylan James Zephyr Project Manager plugin <= 3.3.93 versions. | 8.8 |
| 2022-06-13 | CVE-2022-1822 | Cross-site Scripting vulnerability in Zephyr Project Manager Project Zephyr Project Manager The Zephyr Project Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘project’ parameter in versions up to, and including, 3.2.40 due to insufficient input sanitization and output escaping. | 6.1 |