Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-9121 | 1 Crea8social | 1 Crea8social | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment. | |||||
CVE-2018-9120 | 1 Crea8social | 1 Crea8social | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post. | |||||
CVE-2018-9123 | 1 Crea8social | 1 Crea8social | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a User Profile. | |||||
CVE-2018-9122 | 1 Crea8social | 1 Crea8social | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
In Crea8social 2018.2, there is Reflected Cross-Site Scripting via the term parameter to the /search URI. | |||||
CVE-2015-1054 | 1 Crea8social | 1 Crea8social | 2024-02-04 | 3.5 LOW | N/A |
Cross-site scripting (XSS) vulnerability in the Games feature in Crea8Social 2.0 allows remote authenticated users to inject arbitrary web script or HTML via the Game Content field in Add Game. |