VYPR
Vendor

Telescopeapp

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2015-3454HigSep 6, 2017
    risk 0.42cvss 7.5epss 0.03

    TelescopeJS before 0.15 leaks user bcrypt password hashes in websocket messages, which might allow remote attackers to obtain password hashes via a cross-site scripting attack.

  • CVE-2014-5144MedAug 9, 2017
    risk 0.38cvss 5.4epss 0.02

    Cross-site scripting (XSS) vulnerability in Telescope before 0.9.3 allows remote authenticated users to inject arbitrary web script or HTML via crafted markdown.