CVE-2024-47766 - "Tuleap Unrestricted Cross-Tracker Search Vulnerability"

3 days ago 4

ARTICLE AD BOX

CVE ID : CVE-2024-47766
Published : Oct. 14, 2024, 6:15 p.m. | 24 minutes ago
Description : Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.110, Tuleap Enterprise Edition 15.13-5, and Tuleap Enterprise Edition 15.12-5, administrators of a project can access the content of trackers with permissions restrictions of project they are members of but not admin via the cross tracker search widget. Tuleap Community Edition 15.13.99.110, Tuleap Enterprise Edition 15.13-5, and Tuleap Enterprise Edition 15.12-8 fix this issue.
Severity: 4.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Read Entire Article

CVE-2024-47766 - "Tuleap Unrestricted Cross-Tracker Search Vulnerability"

ARTICLE AD BOX

Related

CVE-2024-9537 - ScienceLogic SL1 Remote Code Execution Vulne...

CVE-2024-47240 - Dell Secure Connect Gateway (SCG) File Syst...

CVE-2024-9674 - WordPress Debrandify Stored XSS Vulnerabilit...

Trending

Popular

CVE-2024-6343 - Zyxel ATP, USG FLEX, USG FLEX 50(W), USG20(W...

CVE-2024-5053 - Fluent Forms Mailchimp API Key Update Weakne...

CVE-2024-8367 - HM Courts & Tribunals Service Probate Back O...

CVE-2024-44946 - Linux KCM kcm_sendmsg() UAF

CVE-2024-8368 - "Code-projects Hospital Management System SQ...