Enalean: >> Tuleap >> 13.8.99.49 Security Vulnerabilities
Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration. In versions prior to 13.9.99.111 the title of a document is not properly escaped in the search result of MyDocmanSearch widget and in the administration page of the locked documents. A malicious user with the capability to create a document could force victim to execute uncontrolled code. Users are advised to upgrade. There are no known workarounds for this issue.
CVSS Score
6.5
EPSS Score
0.005
Published
2022-06-29
Page 3