Summary
Detail | |||
---|---|---|---|
Vendor | Softr | First view | 2022-10-27 |
Product | Softr | Last view | 2023-02-06 |
Version | 2.0 | Type | Application |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:a:softr:softr |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
5.4 | 2023-02-06 | CVE-2022-48085 | Softr v2.0 was discovered to contain a HTML injection vulnerability via the Work Space Name parameter. |
9.8 | 2022-12-19 | CVE-2022-40434 | Softr v2.0 was discovered to be vulnerable to HTML injection via the Name field of the Account page. |
6.1 | 2022-10-27 | CVE-2022-32407 | Softr v2.0 was discovered to contain a Cross-Site Scripting (XSS) vulnerability via the First Name parameter under the Create A New Account module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (3) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |