Source |
CVE Liste |
Identifiant |
3515567 |
Date de publication |
2021-10-14 16:15:09 (vue: 2021-10-14 19:05:45) |
Titre |
CVE-2021-41142 |
Texte |
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments. There is a cross-site scripting vulnerability in Tuleap Community Edition prior to 12.11.99.25 and Tuleap Enterprise Edition 12.11-2. A malicious user with the capability to add and remove attachment to an artifact could force a victim to execute uncontrolled code. Tuleap Community Edition 11.17.99.146 and Tuleap Enterprise Edition 12.11-2 contain a fix for the issue. |
Envoyé |
Oui |
Condensat |
146 2021 41142 add alm application artifact attachment capability code community contain could cross cve developments edition end enterprise execute fix force issue libre malicious open prior remove scripting site source system tool traceability tuleap uncontrolled user victim vulnerability |
Tags |
Tool
Vulnerability
|
Stories |
|
Notes |
|
Move |
|