projectsend security advisories
2 threat alerts tracking vulnerabilities and security advisories that affect projectsend products.
Vulnios monitors projectsend CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent projectsend security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2024-11680 — projectsend — projectsend
ProjectSend versions prior to r1720 are affected by an improper authentication vulnerability. Remote, unauthenticated attackers can exploit this flaw by sending crafted HTTP requests to options.php, e
criticalCVE-2024-11680Critical Vulnerability: CVE-2017-9741 — projectsend — projectsend
install/make-config.php in ProjectSend r754 allows remote attackers to execute arbitrary PHP code via the dbprefix parameter, related to replacing TABLES_PREFIX in the configuration file.
criticalCVE-2017-9741
Track projectsend exposure across your environment
Vulnios automatically cross-references your asset inventory against new projectsend CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan