VYPR

Tuleap Community Edition

by Enalean

CVEs (4)

  • CVE-2025-64117MedNov 12, 2025
    risk 0.30cvss 4.6epss 0.00

    Tuleap is an Open Source Suite to improve management of software developments and collaboration. Tuleap Community Edition prior to version 16.13.99.1761813675 and Tuleap Enterprise Edition prior to versions 16.13-5 and 16.12-8 don't have cross-site request forgery protection in…

  • CVE-2025-59040MedSep 18, 2025
    risk 0.21cvss 4.3epss 0.00

    Tuleap is an Open Source Suite to improve management of software developments and collaboration. Backlog item representations do not verify the permissions of the child trackers. Users might see tracker names they should not have access to. This vulnerability is fixed in Tuleap…

  • CVE-2023-38508Aug 24, 2023
    risk 0.00cvss epss 0.01

    Tuleap is an open source suite to improve management of software developments and collaboration. In Tuleap Community Edition prior to version 14.11.99.28 and Tuleap Enterprise Edition prior to versions 14.10-6 and 14.11-3, the preview of an artifact link with a type does not…

  • CVE-2023-32072May 29, 2023
    risk 0.00cvss epss 0.00

    Tuleap is an open source tool for end to end traceability of application and system developments. Tuleap Community Edition prior to version 14.8.99.60 and Tuleap Enterprise edition prior to 14.8-3 and 14.7-7, the logs of the triggered Jenkins job URLs are not properly escaped. A…