CNNVD-202602-054 Information
CNNVD ID
CNNVD-202602-054
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
Tuleap是Enalean开源的一个开源套件,旨在改善软件开发和协作的管理。 Tuleap存在跨站请求伪造漏洞,该漏洞源于Overview不一致项缺少CSRF保护,可能导致诱骗受害者修复不一致项。
Description (English)
Tuleap is an open source package of the Enalean Open Source to improve software development and collaborative management. Tuleap had a cross-site request for a false loophole, which stemmed from the lack of CSRF protection for the Overview inconsistencies, which could induce victims to repair the inconsistencies.
Hazard Level
High
Vulnerability Type
跨站请求伪造
Affected Vendor
Enalean
Published
2026-02-02
Last Modified
2026-02-24
References
https://github.com/Enalean/tuleap/security/advisories/GHSA-7g48-rwqj-ffxw https://tuleap.net/plugins/tracker/?aid=46389 https://github.com/Enalean/tuleap/commit/5ec5e81e409892fe0e41f11d5d36ee6c85a6fbb5 https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=5ec5e81e409892fe0e41f11d5d36ee6c85a6fbb5 https://access.redhat.com/security/cve/cve-2026-24007