Orangescrum version 1.6.1 suffers from cross site scripting and remote file upload vulnerabilities.
106418e31fa4cbf360e7471d81c2df8932c71452c44b9ba4675115930b0547d9
Orangescrum version 1.8.0 suffers from a privilege escalation vulnerability.
c8c7f43730e3d76d57c14dd79b7de6777f9c15f990b2d77ec8733b0f1c8adc65
Orangescrum version 1.8.0 suffers from multiple remote SQL injection vulnerabilities.
ee836ffb8ac4c8f04caa3e9f4ba0532ab1071de3f53ff4d1759481a59c64dc5c
Orangescrum version 1.8.0 suffers from reflective and persistent cross site scripting vulnerabilities.
086abb0c5e3fa09d0deee6332c6925901258a976ee960fd564771e04be6e288f
OrangeScrum Project Management Software version 1.6.1 suffers from a database disclosure vulnerability.
c4920d9adff7a1fb486ee1561b53f7c9f5078a6c5653819138675c8c5049b811