Cryptocat
Products
1- 17 CVEs
Recent CVEs
17| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2013-2261 | 0.04 | — | 0.11 | Nov 4, 2019 | Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure | |||
| CVE-2013-4103 | 0.04 | — | 0.07 | Nov 4, 2019 | Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input | |||
| CVE-2013-4106 | 0.00 | — | 0.01 | Nov 14, 2019 | A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22. | |||
| CVE-2013-4108 | 0.00 | — | 0.02 | Nov 14, 2019 | Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors. | |||
| CVE-2013-4109 | 0.00 | — | 0.02 | Nov 14, 2019 | An unspecified cross-site scripting (XSS) vulnerability exists in Cryptocat Message Handling 1.1.165. | |||
| CVE-2013-4110 | 0.00 | — | 0.02 | Nov 5, 2019 | Cryptocat has an Unspecified Chat Participant User List Disclosure | |||
| CVE-2013-4107 | 0.00 | — | 0.01 | Nov 5, 2019 | Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting | |||
| CVE-2013-2257 | 0.00 | — | 0.02 | Nov 4, 2019 | Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness | |||
| CVE-2013-2258 | 0.00 | — | 0.01 | Nov 4, 2019 | Cryptocat before 2.0.22 has Nickname User Impersonation | |||
| CVE-2013-2259 | 0.00 | — | 0.04 | Nov 4, 2019 | Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview | |||
| CVE-2013-4105 | 0.00 | — | 0.01 | Nov 4, 2019 | Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure | |||
| CVE-2013-2260 | 0.00 | — | 0.02 | Nov 4, 2019 | Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness | |||
| CVE-2013-2262 | 0.00 | — | 0.02 | Nov 4, 2019 | Cryptocat strophe.js before 2.0.22 has information disclosure | |||
| CVE-2013-4104 | 0.00 | — | 0.01 | Nov 4, 2019 | Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol | |||
| CVE-2013-4100 | 0.00 | — | 0.02 | Nov 4, 2019 | Cryptocat before 2.0.22 has Remote Denial of Service via username | |||
| CVE-2013-4101 | 0.00 | — | 0.01 | Nov 4, 2019 | Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness | |||
| CVE-2013-4102 | 0.00 | — | 0.02 | Nov 4, 2019 | Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness |
- CVE-2013-2261Nov 4, 2019risk 0.04cvss —epss 0.11
Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure
- CVE-2013-4103Nov 4, 2019risk 0.04cvss —epss 0.07
Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input
- CVE-2013-4106Nov 14, 2019risk 0.00cvss —epss 0.01
A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22.
- CVE-2013-4108Nov 14, 2019risk 0.00cvss —epss 0.02
Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors.
- CVE-2013-4109Nov 14, 2019risk 0.00cvss —epss 0.02
An unspecified cross-site scripting (XSS) vulnerability exists in Cryptocat Message Handling 1.1.165.
- CVE-2013-4110Nov 5, 2019risk 0.00cvss —epss 0.02
Cryptocat has an Unspecified Chat Participant User List Disclosure
- CVE-2013-4107Nov 5, 2019risk 0.00cvss —epss 0.01
Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting
- CVE-2013-2257Nov 4, 2019risk 0.00cvss —epss 0.02
Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness
- CVE-2013-2258Nov 4, 2019risk 0.00cvss —epss 0.01
Cryptocat before 2.0.22 has Nickname User Impersonation
- CVE-2013-2259Nov 4, 2019risk 0.00cvss —epss 0.04
Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview
- CVE-2013-4105Nov 4, 2019risk 0.00cvss —epss 0.01
Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure
- CVE-2013-2260Nov 4, 2019risk 0.00cvss —epss 0.02
Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness
- CVE-2013-2262Nov 4, 2019risk 0.00cvss —epss 0.02
Cryptocat strophe.js before 2.0.22 has information disclosure
- CVE-2013-4104Nov 4, 2019risk 0.00cvss —epss 0.01
Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol
- CVE-2013-4100Nov 4, 2019risk 0.00cvss —epss 0.02
Cryptocat before 2.0.22 has Remote Denial of Service via username
- CVE-2013-4101Nov 4, 2019risk 0.00cvss —epss 0.01
Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness
- CVE-2013-4102Nov 4, 2019risk 0.00cvss —epss 0.02
Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness