Known Vulnerabilities for products from Plane
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Plane".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39843 json | Not Provided | 2026-04-09 | 2026-04-13 | |
| CVE-2026-39429 json | Not Provided | 2026-04-08 | 2026-04-10 | |
| CVE-2026-39374 json | Plane is an an open-source project management tool. Prior to 1.3.0, the IssueBulkUpdateDateEndpoint allows a project member (... | Not Provided | 2026-04-07 | 2026-04-15 |
| CVE-2026-35631 json | Not Provided | 2026-04-09 | 2026-04-10 | |
| CVE-2026-33904 json | Not Provided | 2026-03-27 | 2026-03-31 | |
| CVE-2026-33774 json | Not Provided | 2026-04-09 | 2026-04-10 | |
| CVE-2026-33743 json | Not Provided | 2026-03-26 | 2026-03-27 | |
| CVE-2026-31571 json | Not Provided | 2026-04-24 | 2026-04-24 | |
| CVE-2026-27949 json | Plane is an an open-source project management tool. Prior to 1.3.0, a vulnerability was identified in Plane's authentication ... | Not Provided | 2026-04-07 | 2026-04-14 |
| CVE-2026-23392 json | Not Provided | 2026-03-25 | 2026-04-13 | |
| CVE-2023-30791 json | Plane version 0.7.1-dev allows an attacker to change the avatar of his profile, which allows uploading files with HTML extens... | 4.6 - MEDIUM | 2023-07-15 | 2023-07-28 |
| CVE-2023-2268 json | Plane version 0.7.1 allows an unauthenticated attacker to view all stored server files of all users. | 7.5 - HIGH | 2023-07-15 | 2023-07-26 |