enalean

Top products

The 15 most recently published vulnerabilities affecting enalean.

• CVE-2026-24007Tuleap is missing CSRF protection in the Overview inconsistent items4.6Feb 2, 2026
• CVE-2025-65962Tuleap has missing CSRF protections its in tracker field dependencies4.6Dec 8, 2025
• CVE-2025-64760Tuleap has missing CSRF protections in its tracker trigger management system4.6Dec 8, 2025
• CVE-2025-64499Tuleap is missing CSRF protections for its planning management API4.6Dec 8, 2025
• CVE-2025-64498Tuleap has a Cross-Site Request Forgery (CSRF) vulnerability4.6Dec 8, 2025
• CVE-2025-64497Tuleap exposes releases for all projects to File Release System project administrators6.5Dec 8, 2025
• CVE-2025-64482Tuleap missing CSRF protections in the File Release System4.6Nov 12, 2025
• CVE-2025-64117Tuleap missing CSRF protection in the management of SVN commit rules and immutable tags4.6Nov 12, 2025
• CVE-2025-59040Tuleap backlog item representations do not verify the permissions of the child trackers4.3Sep 18, 2025
• CVE-2025-54877Tuleap's special and always there fields permissions are not verified in cross-tracker search5.3Aug 29, 2025
• CVE-2025-53902Tuleap exposes artifacts to a mentioned user via email notifications4.3Jul 29, 2025
• CVE-2025-53541Tuleap is vulnerable to XSS attacks when displaying the children of a parent artifact5.4Jul 29, 2025
• CVE-2025-52899Tuleap vulnerable to user enumeration via the lost password form5.3Jul 29, 2025
• CVE-2025-50179Tuleap missing CSRF protection on tracker reports manipulation4.6Jun 25, 2025
• CVE-2025-48991Tuleap missing CSRF protection on tracker canned responses administration4.6Jun 25, 2025