Fairsketch Rise Ultimate Project Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Fairsketch Rise Ultimate Project Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2017-17999 — CVSS 9.8 (critical): SQL injection vulnerability in RISE Ultimate Project Manager 1.9 allows remote attackers to execute arbitrary SQL commands via the search…
CVE-2025-60378 — CVSS 8.1 (high): Stored HTML injection in RISE Ultimate Project Manager & CRM allows authenticated users to inject arbitrary HTML into invoices and…
CVE-2025-63293 — CVSS 6.5 (medium): FairSketch Rise Ultimate Project Manager & CRM 3.9.4 is vulnerable to Insecure Permissions. A remote authenticated user can append comments…
CVE-2025-56807 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in FairSketch RISE Ultimate Project Manager & CRM 3.9.4 allows an administrator to store a…
CVE-2024-8945 — CVSS 5.5 (medium): A vulnerability has been found in CodeCanyon RISE Ultimate Project Manager 3.7.0 and classified as critical. This vulnerability affects…
CVE-2025-41104 — CVSS 5.4 (medium): HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper…
CVE-2025-41105 — CVSS 5.4 (medium): HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper…
CVE-2025-41106 — CVSS 5.4 (medium): HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper…
CVE-2025-41102 — CVSS 5.4 (medium): HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper…
CVE-2017-11182 — CVSS 5.4 (medium): In Rise Ultimate Project Manager v1.8, XSS vulnerabilities were found in the My Profile section. All input fields are vulnerable.
CVE-2025-41101 — CVSS 5.4 (medium): HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper…
CVE-2017-11181 — CVSS 5.4 (medium): In Rise Ultimate Project Manager v1.8, XSS vulnerabilities were found in the Messaging section. Subject and Message fields are vulnerable.
CVE-2025-41103 — CVSS 5.4 (medium): HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper…
CVE-2024-0545 — CVSS 5.3 (medium): A vulnerability classified as problematic was found in CodeCanyon RISE Ultimate Project Manager 3.5.3. This vulnerability affects unknown…
CVE-2025-3855 — CVSS 4.3 (medium): A vulnerability was found in CodeCanyon RISE Ultimate Project Manager 3.8.2 and classified as problematic. Affected by this issue is some…