linagora/Twake

linagora/Twake

Releases23

Frequency1 month 2 weeks

Last Release about 3 years ago

Stars1.92K

Twake is a secure open source collaboration platform to improve organizational productivity.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-70038 ↗	Mar 9, 2026Monday, 9 March 2026, 18:16	8.8 HIGH	—
An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in linagora Twake v2023.Q1.1223. This allows attackers to execute arbitrary code.
CVE-2025-70039 ↗	Mar 9, 2026Monday, 9 March 2026, 18:16	9.8 CRITICAL	—
An issue pertaining to CWE-78: Improper Neutralization of Special Elements used in an OS Command was discovered in linagora Twake v2023.Q1.1223.
CVE-2025-70037 ↗	Mar 9, 2026Monday, 9 March 2026, 17:16	6.1 MEDIUM	—
An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in linagora Twake v2023.Q1.1223. This allows attackers to obtain sensitive information and execute arbitrary code.
CVE-2023-2675 ↗	Nov 7, 2023Tuesday, 7 November 2023, 04:13	9.8 CRITICAL	—
Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 2023.Q1.1223.
CVE-2023-1665 ↗	Mar 27, 2023Monday, 27 March 2023, 22:15	9.8 CRITICAL	—
Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 0.0.0.
CVE-2023-0028 ↗	Jan 1, 2023Sunday, 1 January 2023, 01:15	5.7 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository linagora/twake prior to 2023.Q1.1200+.