Browse all 4 CVE security advisories affecting Simple Online Planning. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Simple Online Planning is a web-based project management tool designed for task scheduling and team collaboration. Historically, it has been vulnerable to multiple security issues including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. The application's four recorded CVEs highlight consistent weaknesses in input validation and access control mechanisms. While no major public security incidents have been documented, the pattern of vulnerabilities suggests potential risks for organizations relying on this platform for sensitive project data. Users should implement strict access controls and apply security patches promptly to mitigate potential exploitation risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-27112 | SQL Injection in SOPlanning before 1.52.02 — SO PlanningCWE-89 | 9.8AI | CriticalAI | 2024-09-11 |
| CVE-2024-27114 | Remote Code Execution through File Upload in SOPlanning before 1.52.02 — SO PlanningCWE-367 | 8.1AI | HighAI | 2024-09-11 |
| CVE-2024-27115 | Remote Code Execution through File Upload in SOPlanning before 1.52.02 — SO PlanningCWE-434 | 9.8AI | CriticalAI | 2024-09-11 |
| CVE-2024-27113 | Insecure Direct Object Reference to export Database in SOPlanning before 1.52.02 — SO PlanningCWE-200 | 6.2AI | MediumAI | 2024-09-11 |
This page lists every published CVE security advisory associated with Simple Online Planning. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.