Cryptocat Project: >> Cryptocat >> 2.0.13 Security Vulnerabilities
A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22.
CVSS Score
6.1
EPSS Score
0.008
Published
2019-11-14
Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting
CVSS Score
6.1
EPSS Score
0.004
Published
2019-11-05
Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure
CVSS Score
7.5
EPSS Score
0.003
Published
2019-11-04
Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness
CVSS Score
7.5
EPSS Score
0.004
Published
2019-11-04
Cryptocat before 2.0.22 has Nickname User Impersonation
CVSS Score
5.3
EPSS Score
0.004
Published
2019-11-04
Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview
CVSS Score
9.8
EPSS Score
0.007
Published
2019-11-04
Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness
CVSS Score
9.8
EPSS Score
0.005
Published
2019-11-04
Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure
CVSS Score
7.5
EPSS Score
0.079
Published
2019-11-04
Cryptocat strophe.js before 2.0.22 has information disclosure
CVSS Score
7.5
EPSS Score
0.005
Published
2019-11-04
Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol
CVSS Score
7.5
EPSS Score
0.001
Published
2019-11-04
Page 1