VYPR
Unrated severityNVD Advisory· Published Dec 2, 2014· Updated Jun 17, 2026

CVE-2014-8791

CVE-2014-8791

Description

project/register.php in Tuleap before 7.7, when sys_create_project_in_one_step is disabled, allows remote authenticated users to conduct PHP object injection attacks and execute arbitrary PHP code via the data parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.