0.19.8

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-28	CVE-2022-26255	Cross-site Scripting vulnerability in Clash Project Clash 0.19.8 Clash for Windows v0.19.8 was discovered to allow arbitrary code execution via a crafted payload injected into the Proxies name column. network low complexity clash-project CWE-79 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.