CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Xwiki: >> Cryptpad Security Vulnerabilities

CVE-2019-15302

The pad management logic in XWiki labs CryptPad before 3.0.0 allows a remote attacker (who has access to a Rich Text pad with editing rights for the URL) to corrupt it (i.e., cause data loss) via a trivial URL modification.

CVSS Score

6.5

EPSS Score

0.001

Published

2019-09-11

CVE-2017-1000051

Cross-site scripting (XSS) vulnerability in pad export in XWiki labs CryptPad before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the pad content

CVSS Score

6.1

EPSS Score

0.001

Published

2017-07-17

Page 1

Vulnerabilities

Vulnerable Software

Xwiki: >> Cryptpad Security Vulnerabilities

Products

Pricing

Contact Us