Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webtareas vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-44954
webtareas 2.4p5 exists to contain a cross-site scripting (XSS) vulnerability in the component /contacts/listcontacts.php. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Last Name field after clicking &quo...
Webtareas Project Webtareas 2.4
5.4
CVSSv3
CVE-2022-44956
webtareas 2.4p5 exists to contain a cross-site scripting (XSS) vulnerability in the component /projects/listprojects.php. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field.
Webtareas Project Webtareas 2.4
5.4
CVSSv3
CVE-2022-44960
webtareas 2.4p5 exists to contain a cross-site scripting (XSS) vulnerability in the component /general/search.php?searchtype=simple. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Search field.
Webtareas Project Webtareas 2.4
5.4
CVSSv3
CVE-2022-44962
webtareas 2.4p5 exists to contain a cross-site scripting (XSS) vulnerability in the component /calendar/viewcalendar.php. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Subject field.
Webtareas Project Webtareas 2.4
5.4
CVSSv3
CVE-2022-44953
webtareas 2.4p5 exists to contain a cross-site scripting (XSS) vulnerability in the component /linkedcontent/listfiles.php. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field after clicking "A...
Webtareas Project Webtareas 2.4
9.8
CVSSv3
CVE-2022-44290
webTareas 2.4p5 exists to contain a SQL injection vulnerability via the id parameter in deleteapprovalstages.php.
Webtareas Project Webtareas 2.4
9.8
CVSSv3
CVE-2022-44291
webTareas 2.4p5 exists to contain a SQL injection vulnerability via the id parameter in phasesets.php.
Webtareas Project Webtareas 2.4
6.5
CVSSv3
CVE-2020-23069
Path Traversal vulneraility exists in webTareas 2.0 via the extpath parameter in general_serv.php, which could let a malicious user read arbitrary files.
Webtareas Project Webtareas 2.0
5.4
CVSSv3
CVE-2021-36608
Cross Site Scripting (XSS) vulnerability in webTareas 2.2p1 via the Name field to /projects/editproject.php.
Webtareas Project Webtareas 2.2
5.4
CVSSv3
CVE-2021-36609
Cross Site Scripting (XSS) vulnerability in webTareas 2.2p1 via the Name field to /linkedcontent/editfolder.php.
Webtareas Project Webtareas 2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »