Known Vulnerabilities for products from Plane
Listed below are 8 of the newest known vulnerabilities associated with the vendor "Plane".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56243 json | Not Provided | 2026-06-23 | 2026-06-23 | |
| CVE-2026-54762 json | Not Provided | 2026-06-23 | 2026-06-24 | |
| CVE-2026-54761 json | Not Provided | 2026-06-23 | 2026-06-25 | |
| CVE-2026-53285 json | Not Provided | 2026-06-26 | 2026-06-26 | |
| CVE-2026-50107 json | Not Provided | 2026-06-17 | 2026-06-18 | |
| CVE-2026-49346 json | Not Provided | 2026-06-19 | 2026-06-22 | |
| CVE-2026-48989 json | Not Provided | 2026-06-17 | 2026-06-18 | |
| CVE-2026-48797 json | Not Provided | 2026-06-17 | 2026-06-18 | |
| CVE-2026-48090 json | Not Provided | 2026-06-26 | 2026-07-08 | |
| CVE-2026-47262 json | Not Provided | 2026-07-01 | 2026-07-01 | |
| CVE-2026-46558 json | Plane is an open-source project management tool. Prior to version 1.3.1, there is a cross-workspace asset authorization bypas... | Not Provided | 2026-06-10 | 2026-06-12 |
| CVE-2026-40102 json | Plane is an open-source project management tool. In versions 1.3.0 and below, SavedAnalyticEndpoint passes the user-controlle... | Not Provided | 2026-05-20 | 2026-05-21 |
| CVE-2026-39843 json | Plane is an an open-source project management tool. From 0.28.0 to before 1.3.0, the remediation of GHSA-jcc6-f9v6-f7jw is in... | Not Provided | 2026-04-09 | 2026-04-17 |
| CVE-2026-39374 json | Plane is an an open-source project management tool. Prior to 1.3.0, the IssueBulkUpdateDateEndpoint allows a project member (... | Not Provided | 2026-04-07 | 2026-04-15 |
| CVE-2026-27949 json | Plane is an an open-source project management tool. Prior to 1.3.0, a vulnerability was identified in Plane's authentication ... | Not Provided | 2026-04-07 | 2026-04-14 |
| CVE-2026-10850 json | Plane CE 1.3.1 allows a low-privileged project member to submit arbitrary HTML/JS in the description_html field when creating... | Not Provided | 2026-06-17 | 2026-06-23 |
| CVE-2023-30791 json | Plane version 0.7.1-dev allows an attacker to change the avatar of his profile, which allows uploading files with HTML extens... | 4.6 - MEDIUM | 2023-07-15 | 2023-07-28 |
| CVE-2023-2268 json | Plane version 0.7.1 allows an unauthenticated attacker to view all stored server files of all users. | 7.5 - HIGH | 2023-07-15 | 2023-07-26 |