Overview :
SO Planning is an open source online planning tool completely free, designed to easily plan projects / tasks online, in order to manage and define work for a whole team. (from http://www.soplanning.org/en/index.php)
Affected Product(s) :
  • 1.32 and prior
Vulnerability Details :
CVE ID : CVE-2014-8674
Soplanning version 1.32 is susceptible to multiple vulnerabilities, including SQLi, XSS, path traversal, authentication information disclosure, PHP code injection.

Solution :

Update to Soplanning version 1.33