VYPR

Book3

by Tad

CVEs (2)

  • CVE-2021-41974CriOct 8, 2021
    risk 0.59cvss 9.1epss 0.01

    Tad Book3 editing book page does not perform identity verification. Remote attackers can use the vulnerability to view and modify arbitrary content of books without permission.

  • CVE-2021-41563MedOct 8, 2021
    risk 0.40cvss 6.1epss 0.01

    Tad Book3 editing book function does not filter special characters. Unauthenticated attackers can remotely inject JavaScript syntax and execute stored XSS attacks.