Worklenz

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2026-25947 HIGH POC PATCH This Week

Worklenz is a project management tool. [CVSS 8.8 HIGH]

SQLi Worklenz

NVD GitHub

CVSS 3.1

8.8

EPSS

0.0%

CVE-2025-70368 MEDIUM POC This Month

Worklenz version 2.1.5 contains a Stored Cross-Site Scripting (XSS) vulnerability in the Project Updates feature. An attacker can submit a malicious payload in the Updates text field which is then rendered in the reporting view without proper sanitization. [CVSS 5.4 MEDIUM]

XSS Worklenz

NVD GitHub

CVSS 3.1

5.4

EPSS

0.0%

CVE-2026-25947

EPSS 0% CVSS 8.8

HIGH POC PATCH This Week

Worklenz is a project management tool. [CVSS 8.8 HIGH]

SQLi Worklenz

NVD GitHub

CVE-2025-70368

EPSS 0% CVSS 5.4

MEDIUM POC This Month

Worklenz version 2.1.5 contains a Stored Cross-Site Scripting (XSS) vulnerability in the Project Updates feature. An attacker can submit a malicious payload in the Updates text field which is then rendered in the reporting view without proper sanitization. [CVSS 5.4 MEDIUM]

XSS Worklenz

NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy