Webtareas Project

Webtareas

25 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2022-44962

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:15
  • Zuletzt bearbeitet 24.04.2025 20:15:29

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /calendar/viewcalendar.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Sub...

5.4

CVE-2022-44961

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:15
  • Zuletzt bearbeitet 24.04.2025 20:15:29

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /forums/editforum.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name fie...

5.4

CVE-2022-44960

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:15
  • Zuletzt bearbeitet 24.04.2025 20:15:29

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /general/search.php?searchtype=simple. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected i...

5.4

CVE-2022-44959

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:14
  • Zuletzt bearbeitet 24.04.2025 21:15:21

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /meetings/listmeetings.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Nam...

5.4

CVE-2022-44957

Exploit
  • EPSS 17.82%
  • Veröffentlicht 02.12.2022 20:15:14
  • Zuletzt bearbeitet 24.04.2025 21:15:21

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /clients/listclients.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name ...

5.4

CVE-2022-44956

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:14
  • Zuletzt bearbeitet 24.04.2025 21:15:20

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /projects/listprojects.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Nam...

5.4

CVE-2022-44955

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:14
  • Zuletzt bearbeitet 24.04.2025 20:15:28

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the Chat function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Messages field.

5.4

CVE-2022-44954

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:14
  • Zuletzt bearbeitet 24.04.2025 20:15:28

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /contacts/listcontacts.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Las...

5.4

CVE-2022-44953

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.12.2022 20:15:14
  • Zuletzt bearbeitet 24.04.2025 20:15:28

webtareas 2.4p5 was discovered to contain a cross-site scripting (XSS) vulnerability in the component /linkedcontent/listfiles.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the N...

9.8

CVE-2022-44291

Exploit
  • EPSS 75.7%
  • Veröffentlicht 02.12.2022 20:15:13
  • Zuletzt bearbeitet 24.04.2025 21:15:20

webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in phasesets.php.