Taigaio Taiga-Back vulnerabilities
2 known vulnerabilities affecting taigaio/taiga-back.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-62368P2CRITICALCVSS 9.0PoCfixed in 6.9.02025-10-28
CVE-2025-62368 [CRITICAL] CWE-502 CVE-2025-62368: Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code ex
Taiga is an open source project management platform. In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. This issue is fixed in version 6.9.0.
nvd
CVE-2025-62367P4MEDIUMCVSS 4.8fixed in 6.9.02025-10-28
CVE-2025-62367 [MEDIUM] CWE-89 CVE-2025-62367: Taiga is an open source project management platform. In versions 6.8.3 and earlier, Taiga API is vul
Taiga is an open source project management platform. In versions 6.8.3 and earlier, Taiga API is vulnerable to time-based blind SQL injection allowing sensitive data disclosure via response timing. This issue is fixed in version 6.9.0.
nvd