Search criteria
3 vulnerabilities found for dotProject by dotProject
JVNDB-2006-000622
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
dotProject cross-site scripting vulnerability
Details
dotProject, an open source project management tool, contains a cross-site scripting vulnerability.
As of June 5, 2006, it is confirmed that Internet Explorer is affected by this vulnerability. It is also confirmed that Mozilla Firefox and Opera are not affected by this vulnerability.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000622.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "dotProject, an open source project management tool, contains a cross-site scripting vulnerability.\r\n\r\nAs of June 5, 2006, it is confirmed that Internet Explorer is affected by this vulnerability. It is also confirmed that Mozilla Firefox and Opera are not affected by this vulnerability.",
"link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000622.html",
"sec:cpe": {
"#text": "cpe:/a:dotproject:dotproject",
"@product": "dotProject",
"@vendor": "dotProject",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2006-000622",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN97636431/index.html",
"@id": "JVN#97636431",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2851",
"@id": "CVE-2006-2851",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-2851",
"@id": "CVE-2006-2851",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/20418",
"@id": "SA20418",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/18275",
"@id": "18275",
"@source": "BID"
},
{
"#text": "http://www.frsirt.com/english/advisories/2006/2124",
"@id": "FrSIRT/ADV-2006-2124",
"@source": "FRSIRT"
}
],
"title": "dotProject cross-site scripting vulnerability"
}
JVNDB-2007-000454
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
dotProject cross-site scripting vulnerability
Details
dotProject, an open source project management tool, contains a cross-site scripting vulnerability.
This vulnerability is different from JVN#97636431.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000454.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "dotProject, an open source project management tool, contains a cross-site scripting vulnerability.\r\n\r\nThis vulnerability is different from JVN#97636431.",
"link": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000454.html",
"sec:cpe": {
"#text": "cpe:/a:dotproject:dotproject",
"@product": "dotProject",
"@vendor": "dotProject",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2007-000454",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN63602912/index.html",
"@id": "JVN#63602912",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3226",
"@id": "CVE-2007-3226",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3226",
"@id": "CVE-2007-3226",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/25638",
"@id": "SA25638",
"@source": "SECUNIA"
}
],
"title": "dotProject cross-site scripting vulnerability"
}
JVNDB-2006-000626
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
dotProject cross-site scripting vulnerability
Details
dotProject, an open source project management tool, contains a cross-site scripting vulnerability.
This vulnerability is different from JVN#97636431.
References
| Type | URL | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000626.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "dotProject, an open source project management tool, contains a cross-site scripting vulnerability.\r\nThis vulnerability is different from JVN#97636431.",
"link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000626.html",
"sec:cpe": {
"#text": "cpe:/a:dotproject:dotproject",
"@product": "dotProject",
"@vendor": "dotProject",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2006-000626",
"sec:references": [
{
"#text": "http://jvn.jp/en/jp/JVN39188922/index.html",
"@id": "JVN#39188922",
"@source": "JVN"
},
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3240",
"@id": "CVE-2006-3240",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-3240",
"@id": "CVE-2006-3240",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/20822",
"@id": "SA20822",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/18650",
"@id": "18650",
"@source": "BID"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/27585",
"@id": "27585",
"@source": "XF"
},
{
"#text": "http://www.frsirt.com/english/advisories/2006/2509",
"@id": "FrSIRT/ADV-2006-2509",
"@source": "FRSIRT"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "dotProject cross-site scripting vulnerability"
}