Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown
CVE-2023-46688
Disclosure Date: December 06, 2023 (last updated December 12, 2023)
Open redirect vulnerability in Pleasanter 1.3.47.0 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary web sites via a specially crafted URL.
0
Attacker Value
Unknown
CVE-2023-45210
Disclosure Date: December 06, 2023 (last updated December 12, 2023)
Pleasanter 1.3.47.0 and earlier contains an improper access control vulnerability, which may allow a remote authenticated attacker to view the temporary files uploaded by other users who are not permitted to access.
0
Attacker Value
Unknown
CVE-2023-34439
Disclosure Date: December 06, 2023 (last updated December 13, 2023)
Pleasanter 1.3.47.0 and earlier contains a stored cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on the user's web browser.
0
Attacker Value
Unknown
CVE-2023-32608
Disclosure Date: June 30, 2023 (last updated February 25, 2025)
Directory traversal vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and earlier versions allows a remote authenticated attacker to alter an arbitrary file on the server.
0
Attacker Value
Unknown
CVE-2023-32607
Disclosure Date: June 30, 2023 (last updated February 25, 2025)
Stored cross-site scripting vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and earlier versions allows a remote authenticated attacker to inject an arbitrary script.
0
Attacker Value
Unknown
CVE-2023-30758
Disclosure Date: June 01, 2023 (last updated February 25, 2025)
Cross-site scripting vulnerability in Pleasanter 1.3.38.1 and earlier allows a remote authenticated attacker to inject an arbitrary script.
0
