kuaifan/dootask

kuaifan/dootask

www.dootask.com

Releases216

Frequency1 week 23 hours

Last Release 2 days ago

Stars5.49K

DooTask是一款开源在线项目任务管理工具，提供各类文档协作工具、在线思维导图、在线流程图、项目管理、任务分发、即时IM，文件管理等工具；同时消息功能使用非对称加密技术让你的沟通更安全。

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-29828 ↗	Mar 20, 2026Friday, 20 March 2026, 17:16	6.1 MEDIUM	—
DooTask v1.6.27 has a Cross-Site Scripting (XSS) vulnerability in the /manage/project/<id> page via the input field projectDesc.
CVE-2025-10762 ↗	Sep 21, 2025Sunday, 21 September 2025, 05:15	6.3 MEDIUM	6.5 MEDIUM
A vulnerability was found in kuaifan DooTask up to 1.2.49. Affected by this vulnerability is an unknown functionality of the file app/Http/Controllers/Api/UsersController.php. The manipulation of the argument keys[department] results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used.
CVE-2024-34906 ↗	May 15, 2024Wednesday, 15 May 2024, 20:15	5.4 MEDIUM	—
An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file.