搜索结果
关于「openproject」的漏洞数据
| AVD编号 | 漏洞名称 | 漏洞类型 | 披露时间 | 漏洞状态 |
|---|---|---|---|---|
| AVD-2026-40896 | OpenProject 通过无范围部分查找进行跨项目会议议程项目注入 (CVE-2026-40896) | 2026-04-21 | ||
| AVD-2026-33667 | OpenProject 2FA OTP暴力破解漏洞(CVE-2026-33667) | 2026-04-16 | ||
| AVD-2026-34717 | OpenProject SQL注入漏洞(CVE-2026-34717) | 2026-04-03 | ||
| AVD-2026-32703 | OpenProject 存储型 XSS 漏洞(CVE-2026-32703) | 2026-03-19 | ||
| AVD-2026-32698 | OpenProject SQL注入导致远程代码执行漏洞(CVE-2026-32698) | 2026-03-19 | ||
| AVD-2026-31974 | OpenProject < 17.2.0 内网扫描SSRF漏洞(CVE-2026-31974) | 2026-03-12 | ||
| AVD-2026-30235 | OpenProject < 17.2.0 Markdown DOM Clobbering 漏洞(CVE-2026-30235) | 2026-03-12 | ||
| AVD-2026-30236 | OpenProject < 17.2.0 预算成员校验缺失导致费率泄露(CVE-2026-30236) | 2026-03-12 | ||
| AVD-2026-30239 | OpenProject < 17.2.0 预算分配越权修改漏洞(CVE-2026-30239) | 2026-03-12 | ||
| AVD-2026-30234 | OpenProject < 17.2.0 BCF 导入路径穿越(CVE-2026-30234) | 2026-03-12 | ||
| AVD-2026-27723 | OpenProject 鉴权绕过导致越权创建 Wiki 页面(CVE-2026-27723) | 2026-03-06 | ||
| AVD-2026-24777 | OpenProject 安全漏洞(CVE-2026-24777) | 2026-02-10 | ||
| AVD-2026-25764 | OpenProject 安全漏洞(CVE-2026-25764) | 2026-02-07 | ||
| AVD-2026-25763 | OpenProject 操作系统命令注入漏洞(CVE-2026-25763) | 2026-02-07 | ||
| AVD-2026-24776 | OpenProject 安全漏洞(CVE-2026-24776) | 2026-02-07 | ||
| AVD-2026-24775 | OpenProject 数据伪造问题漏洞(CVE-2026-24775) | 2026-01-29 | ||
| AVD-2026-24772 | OpenProject 数据伪造问题漏洞(CVE-2026-24772) | 2026-01-29 | ||
| AVD-2026-24685 | OpenProject 在存储库模块上具有参数注入,允许任意文件写入 (CVE-2026-24685) | 2026-01-29 | ||
| AVD-2026-23721 | OpenProject 安全漏洞(CVE-2026-23721) | 2026-01-20 | ||
| AVD-2026-23646 | OpenProject 用户可以删除其他用户的会话,导致他们被注销 (CVE-2026-23646) | 2026-01-20 | ||
| AVD-2026-23625 | OpenProject 使用附件和 script-src self 存储了 XSS 回归 (CVE-2026-23625) | 2026-01-20 | ||
| AVD-2026-22605 | OpenProject 容易受到会议中不安全的直接对象引用的影响 (CVE-2026-22605) | 2026-01-10 | ||
| AVD-2026-22604 | OpenProject 容易通过更改密码功能进行用户枚举 (CVE-2026-22604) | 2026-01-10 | ||
| AVD-2026-22603 | OpenProject 安全漏洞(CVE-2026-22603) | 2026-01-10 | ||
| AVD-2026-22602 | OpenProject 信息泄露漏洞(CVE-2026-22602) | 2026-01-10 | ||
| AVD-2026-22601 | OpenProject 在电子邮件功能中存在代码执行漏洞 (CVE-2026-22601) | 2026-01-10 | ||
| AVD-2026-22600 | OpenProject 信息泄露漏洞(CVE-2026-22600) | 2026-01-10 | ||
| AVD-2025-24892 | OpenProject存储的HTML注入脆弱性(CVE-2025-24892) | 2025-02-11 | ||
| AVD-2024-41801 | OpenProject 软件包安装在默认配置的登录中存在开放重定向漏洞 (CVE-2024-41801) | 2024-07-26 | ||
| AVD-2024-35224 | OpenProject 中存储的跨站脚本 (XSS) (CVE-2024-35224) | 2024-05-23 |