Vulnerabilities (CVE)

Filtered by vendor Crea8social Subscribe
Filtered by product Crea8social
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-9121 1 Crea8social 1 Crea8social 2024-02-04 3.5 LOW 5.4 MEDIUM
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post comment.
CVE-2018-9120 1 Crea8social 1 Crea8social 2024-02-04 3.5 LOW 5.4 MEDIUM
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a post.
CVE-2018-9123 1 Crea8social 1 Crea8social 2024-02-04 3.5 LOW 5.4 MEDIUM
In Crea8social 2018.2, there is Stored Cross-Site Scripting via a User Profile.
CVE-2018-9122 1 Crea8social 1 Crea8social 2024-02-04 3.5 LOW 5.4 MEDIUM
In Crea8social 2018.2, there is Reflected Cross-Site Scripting via the term parameter to the /search URI.
CVE-2015-1054 1 Crea8social 1 Crea8social 2024-02-04 3.5 LOW N/A
Cross-site scripting (XSS) vulnerability in the Games feature in Crea8Social 2.0 allows remote authenticated users to inject arbitrary web script or HTML via the Game Content field in Add Game.