📦 Teedy

This LDAP injection vulnerability in Teedy allows unauthenticated attackers to manipulate LDAP queries through the login form's username field. Attackers can create arbitrary accounts and perform pass...

This is a reflected cross-site scripting (XSS) vulnerability in Teedy document management system that allows unauthenticated attackers to inject malicious scripts via search functionality. When victim...

Teedy versions up to 1.12 lack CSRF protection, allowing attackers to trick authenticated users into performing unintended actions. This affects all Teedy instances running vulnerable versions, potent...

This CSRF vulnerability in Teedy allows attackers to perform unauthorized administrative actions via a forged POST request to /api/user/admin. It affects all Teedy instances running versions through 1...

CVE-2025-11853 is an improper access control vulnerability in Sismics Teedy's API endpoint that allows unauthorized access to files. Attackers can exploit this remotely to access sensitive documents w...