Vulnerabilities (CVE)

Filtered by vendor Habitica Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-23077 1 Habitica 1 Habitica 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
In habitica versions v4.119.0 through v4.232.2 are vulnerable to DOM XSS via the login page.
CVE-2022-23078 1 Habitica 1 Habitica 2024-02-04 5.8 MEDIUM N/A
In habitica versions v4.119.0 through v4.232.2 are vulnerable to open redirect via the login page.