Browse all 14 CVE security advisories affecting Priority. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Priority is a task management and productivity platform designed for team collaboration and workflow organization. Historically, Priority has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues, with 14 CVEs documented to date. The platform's security posture has been compromised through insufficient input validation and improper access controls, leading to potential unauthorized system access and data exposure. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities in web application components suggests ongoing challenges in secure coding practices, requiring organizations to implement robust compensating controls when deploying this solution.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-55064 | Priority - CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') — WebCWE-79 | 4.8 | Medium | 2025-12-29 |
| CVE-2025-55063 | Priority - CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') — WebCWE-79 | 4.8 | Medium | 2025-12-29 |
| CVE-2025-55062 | Priority - CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') — WebCWE-79 | 4.8 | Medium | 2025-12-29 |
| CVE-2025-55061 | Priority - CWE-434 Unrestricted Upload of File with Dangerous Type — WebCWE-434 | 8.8 | High | 2025-12-29 |
| CVE-2025-55060 | Priority - CWE-601: URL Redirection to Untrusted Site ('Open Redirect') — WebCWE-601 | 6.1 | Medium | 2025-12-29 |
This page lists every published CVE security advisory associated with Priority. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.