Vulnerabilities (CVE)

Filtered by vendor Teamwork Management System Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-50630 1 Teamwork Management System Project 1 Teamwork Management System 2024-11-21 N/A 6.1 MEDIUM
Cross Site Scripting (XSS) vulnerability in xiweicheng TMS v.2.28.0 allows a remote attacker to execute arbitrary code via a crafted script to the click here function.
CVE-2022-26247 1 Teamwork Management System Project 1 Teamwork Management System 2024-11-21 4.3 MEDIUM 5.9 MEDIUM
TMS v2.28.0 contains an insecure permissions vulnerability via the component /TMS/admin/user/Update2. This vulnerability allows attackers to modify the administrator account and password.