Vulnerabilities > Cryptocat Project

DATE CVE VULNERABILITY TITLE RISK
2019-11-04 CVE-2013-4104 Inadequate Encryption Strength vulnerability in Cryptocat Project Cryptocat
Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol
network
low complexity
cryptocat-project CWE-326
7.5
2019-11-04 CVE-2013-2262 Information Exposure vulnerability in Cryptocat Project Cryptocat
Cryptocat strophe.js before 2.0.22 has information disclosure
network
low complexity
cryptocat-project CWE-200
7.5
2019-11-04 CVE-2013-2261 Information Exposure vulnerability in Cryptocat Project Cryptocat
Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure
network
low complexity
cryptocat-project CWE-200
7.5
2019-11-04 CVE-2013-4103 Improper Input Validation vulnerability in Cryptocat Project Cryptocat
Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input
network
low complexity
cryptocat-project CWE-20
critical
9.8
2019-11-04 CVE-2013-4102 Use of Insufficiently Random Values vulnerability in Cryptocat Project Cryptocat
Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness
network
low complexity
cryptocat-project CWE-330
critical
9.1
2019-11-04 CVE-2013-4101 Improper Input Validation vulnerability in Cryptocat Project Cryptocat
Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness
network
low complexity
cryptocat-project CWE-20
5.3
2019-11-04 CVE-2013-4100 Improper Input Validation vulnerability in Cryptocat Project Cryptocat
Cryptocat before 2.0.22 has Remote Denial of Service via username
network
low complexity
cryptocat-project CWE-20
7.5