Affected versions
< 12.11.99.25, >= 12.11-1 && < 12.11-2
Patched versions
12.11.99.25, 12.11-2
Impact
A malicious user with the capability to add and remove attachment to an artifact could force a victim to execute uncontrolled code.
Patches
The following versions contain the fix:
- Tuleap Community Edition 11.17.99.146
- Tuleap Enterprise Edition 12.11-2
For more information
If you have any questions or comments about this advisory, reach out to us via the contact information provided on the Tuleap.org security page.
References
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session.
You signed out in another tab or window. Reload to refresh your session.
Impact
A malicious user with the capability to add and remove attachment to an artifact could force a victim to execute uncontrolled code.
Patches
The following versions contain the fix:
For more information
If you have any questions or comments about this advisory, reach out to us via the contact information provided on the Tuleap.org security page.
References