Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tangro business workflow vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2020-26171
In tangro Business Workflow prior to 1.18.1, the documentId of attachment uploads to /api/document/attachments/upload can be manipulated. By doing this, users can add attachments to workitems that do not belong to them.
Tangro Business Workflow
570
VMScore
CVE-2020-26172
Every login in tangro Business Workflow prior to 1.18.1 generates the same JWT token, which allows an malicious user to reuse the token when a session is active. The JWT token does not contain an expiration timestamp.
Tangro Business Workflow
356
VMScore
CVE-2020-26173
An incorrect access control implementation in Tangro Business Workflow prior to 1.18.1 allows an malicious user to download documents (PDF) by providing a valid document ID and token. No further authentication is required.
Tangro Business Workflow
578
VMScore
CVE-2020-26174
tangro Business Workflow prior to 1.18.1 requests a list of allowed filetypes from the server and restricts uploads to the filetypes contained in this list. However, this restriction is enforced in the browser (client-side) and can be circumvented. This allows an malicious user t...
Tangro Business Workflow
356
VMScore
CVE-2020-26175
In tangro Business Workflow prior to 1.18.1, an attacker can manipulate the value of PERSON in requests to /api/profile in order to change profile information of other users.
Tangro Business Workflow
356
VMScore
CVE-2020-26176
An issue exists in tangro Business Workflow prior to 1.18.1. No (or broken) access control checks exist on the /api/document/<DocumentID>/attachments API endpoint. Knowing a document ID, an attacker can list all the attachments of a workitem, including their respective IDs....
Tangro Business Workflow
356
VMScore
CVE-2020-26177
In tangro Business Workflow prior to 1.18.1, a user's profile contains some items that are greyed out and thus are not intended to be edited by regular users. However, this restriction is only applied client-side. Manipulating any of the greyed-out values in requests to /api...
Tangro Business Workflow
445
VMScore
CVE-2020-26178
In tangro Business Workflow prior to 1.18.1, knowing an attachment ID, it is possible to download workitem attachments without being authenticated.
Tangro Business Workflow
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started