Vulnerabilities > Cryptocat Project > Cryptocat > 2.0.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-14 | CVE-2013-4106 | Cross-site Scripting vulnerability in Cryptocat Project Cryptocat A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22. | 4.3 |
| 2019-11-05 | CVE-2013-4107 | Cross-site Scripting vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting | 4.3 |
| 2019-11-04 | CVE-2013-4105 | Information Exposure vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure | 5.0 |
| 2019-11-04 | CVE-2013-2260 | Insufficient Entropy vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness | 5.0 |
| 2019-11-04 | CVE-2013-2259 | Improper Input Validation vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview | 7.5 |
| 2019-11-04 | CVE-2013-2258 | Nickname User Impersonation vulnerability in Cryptocat Cryptocat before 2.0.22 has Nickname User Impersonation | 5.0 |
| 2019-11-04 | CVE-2013-2257 | Improper Restriction of Excessive Authentication Attempts vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness | 5.0 |
| 2019-11-04 | CVE-2013-4104 | Inadequate Encryption Strength vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol | 5.0 |
| 2019-11-04 | CVE-2013-2262 | Information Exposure vulnerability in Cryptocat Project Cryptocat Cryptocat strophe.js before 2.0.22 has information disclosure | 5.0 |
| 2019-11-04 | CVE-2013-2261 | Information Exposure vulnerability in Cryptocat Project Cryptocat Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure | 5.0 |