Opentrade Project: >> Opentrade Security Vulnerabilities
OpenTrade through 0.2.0 has a DOM-based XSS vulnerability that is executed when an administrator attempts to delete a message that contains JavaScript.
CVSS Score
7.6
EPSS Score
0.004
Published
2020-01-11
OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and server/utils.js.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-11-25