Filtered by vendor Testlink
Subscriptions
Filtered by product Testlink
Subscriptions
Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2020-8637 | 1 Testlink | 1 Testlink | 2024-08-04 | 9.8 Critical |
A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in dragdroptreenodes.php via the node_id parameter. | ||||
CVE-2022-35195 | 1 Testlink | 1 Testlink | 2024-08-03 | 7.2 High |
TestLink 1.9.20 Raijin was discovered to contain a broken access control vulnerability at /lib/attachments/attachmentdownload.php | ||||
CVE-2022-35193 | 1 Testlink | 1 Testlink | 2024-08-03 | 7.2 High |
TestLink v1.9.20 was discovered to contain a SQL injection vulnerability via /lib/execute/execNavigator.php. | ||||
CVE-2022-35196 | 1 Testlink | 1 Testlink | 2024-08-03 | 8.8 High |
TestLink v1.9.20 was discovered to contain a Cross-Site Request Forgery (CSRF) via /lib/plan/planView.php. | ||||
CVE-2022-35194 | 1 Testlink | 1 Testlink | 2024-08-03 | 5.4 Medium |
TestLink v1.9.20 was discovered to contain a stored cross-site scripting (XSS) vulnerability via /lib/inventory/inventoryView.php. | ||||
CVE-2023-50110 | 1 Testlink | 1 Testlink | 2024-08-02 | 7.5 High |
TestLink through 1.9.20 allows type juggling for authentication bypass because === is not used. |