VYPR
Vendor

Alanaktion

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2025-57768MedAug 21, 2025
    risk 0.38cvss epss 0.00

    Phproject is a high performance full-featured project management system. From 1.8.0 to before 1.8.3, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Planned Hours field when creating a new project. When sending a POST request to /issues/new/, the value provided…

  • CVE-2020-11011CriApr 22, 2020
    risk 0.00cvss 9.9epss 0.02

    In Phproject before version 1.7.8, there's a vulnerability which allows users with access to file uploads to execute arbitrary code. This is patched in version 1.7.8.