CVE-2024-27476

Published April 10th, 2024

View on NVD ↗

CVSS v3

4.7

MEDIUM

CVSS v2

N/A

Affected

2

PROJECTS

Description

Leantime 3.0.6 is vulnerable to HTML Injection via /dashboard/show#/tickets/newTicket.

Leantime/leantime

Leantime is a goals focused project management system for non-project managers. Building with ADHD, Autism, and dyslexia in mind.

GitHub

9.98K

dead1nfluence/Leantime-POCUNAVAILABLE

CVE-2024-27474, CVE-2024-27476, CVE-2024-27477

GitHub