TestLinkOpenSourceTRMS/testlink-code

GitHub

github.com

Releases21

Frequency8 months 2 weeks

Last Release 6 months ago

Stars1.6K

TestLink Open Source Test & Requirement Management System

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-50110 ↗	Dec 30, 2023Saturday, 30 December 2023, 17:15	7.5 HIGH	—
TestLink through 1.9.20 allows type juggling for authentication bypass because === is not used.
CVE-2020-12273 ↗	Apr 27, 2020Monday, 27 April 2020, 13:15	7.5 HIGH	5 MEDIUM
In TestLink 1.9.20, a crafted login.php viewer parameter exposes cleartext credentials.
CVE-2020-12274 ↗	Apr 27, 2020Monday, 27 April 2020, 13:15	9.8 CRITICAL	7.5 HIGH
In TestLink 1.9.20, the lib/cfields/cfieldsExport.php goback_url parameter causes a security risk because it depends on client input and is not constrained to lib/cfields/cfieldsView.php at the web site associated with the session.
CVE-2020-8637 ↗	Apr 3, 2020Friday, 3 April 2020, 19:15	9.8 CRITICAL	7.5 HIGH
A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in dragdroptreenodes.php via the node_id parameter.
CVE-2020-8638 ↗	Apr 3, 2020Friday, 3 April 2020, 19:15	9.8 CRITICAL	7.5 HIGH
A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in planUrgency.php via the urgency parameter.
CVE-2020-8639 ↗	Apr 3, 2020Friday, 3 April 2020, 19:15	8.8 HIGH	6.5 MEDIUM
An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by uploading a file with an executable extension. This allows an authenticated attacker to upload a malicious file (containing PHP code to execute operating system commands) to a publicly accessible directory of the application.
CVE-2019-20107 ↗	Mar 5, 2020Thursday, 5 March 2020, 13:15	8.8 HIGH	6.5 MEDIUM
Multiple SQL injection vulnerabilities in TestLink through 1.9.19 allows remote authenticated users to execute arbitrary SQL commands via the (1) tproject_id parameter to keywordsView.php; the (2) req_spec_id parameter to reqSpecCompareRevisions.php; the (3) requirement_id parameter to reqCompareVersions.php; the (4) build_id parameter to planUpdateTC.php; the (5) tplan_id parameter to newest_tcversions.php; the (6) tplan_id parameter to tcCreatedPerUserGUI.php; the (7) tcase_id parameter to tcAssign2Tplan.php; or the (8) testcase_id parameter to tcCompareVersions.php. Authentication is often easy to achieve: a guest account, that can execute this attack, can be created by anyone in the default configuration.
CVE-2020-8841 ↗	Feb 10, 2020Monday, 10 February 2020, 21:56	8.8 HIGH	6.5 MEDIUM
An issue was discovered in TestLink 1.9.19. The relation_type parameter of the lib/requirements/reqSearch.php endpoint is vulnerable to authenticated SQL Injection.
CVE-2019-20381 ↗	Jan 20, 2020Monday, 20 January 2020, 06:15	6.1 MEDIUM	4.3 MEDIUM
TestLink before 1.9.20 allows XSS via non-lowercase javascript: in the index.php reqURI parameter. NOTE: this issue exists because of an incomplete fix for CVE-2019-19491.
CVE-2018-7466 ↗	Feb 25, 2018Sunday, 25 February 2018, 07:29	—	6 MEDIUM
install/installNewDB.php in TestLink through 1.9.16 allows remote attackers to conduct injection attacks by leveraging control over DB LOGIN NAMES data during installation to provide a long, crafted value.