Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flyspray flyspray 0.9.9 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6461
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Flyspray 0.9.9 up to and including 0.9.9.3 allow remote malicious users to inject arbitrary web script or HTML via (1) the query string in an index action, related to the savesearch JavaScript function; and (2) t...
Flyspray Flyspray 0.9.9
Flyspray Flyspray 0.9.9.1
Flyspray Flyspray 0.9.9.2
Flyspray Flyspray 0.9.9.3
NA
CVE-2008-1165
Multiple cross-site scripting (XSS) vulnerabilities in Flyspray 0.9.9 up to and including 0.9.9.4 allow remote malicious users to inject arbitrary web script or HTML via (1) a forced SQL error message or (2) old_value and new_value database fields in task summaries, related to th...
Flyspray Flyspray 0.9.9
Flyspray Flyspray 0.9.9.1
Flyspray Flyspray 0.9.9.4
Flyspray Flyspray 0.9.9.2
Flyspray Flyspray 0.9.9.3
NA
CVE-2008-1166
Flyspray 0.9.9.4 generates different error messages depending on whether the username is valid or invalid, which allows remote malicious users to enumerate usernames.
Flyspray Flyspray 0.9.9
Flyspray Flyspray 0.9.9.1
Flyspray Flyspray 0.9.9.2
Flyspray Flyspray 0.9.9.3
Flyspray Flyspray 0.9.9.4
NA
CVE-2007-1788
Flyspray 0.9.9, when output_buffering is disabled or "set to a low value," allows remote malicious users to bypass authentication via a crafted post request.
Flyspray Flyspray 0.9.9
NA
CVE-2007-1789
Flyspray 0.9.9 allows remote malicious users to obtain sensitive information (private project summaries) via direct requests.
Flyspray Flyspray 0.9.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started