Vulnerabilities > Dropouts

DATE CVE VULNERABILITY TITLE RISK
2021-10-22 CVE-2020-23041 Cross-site Scripting vulnerability in Dropouts AIR Share 1.2
Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` exception-handling.
network
low complexity
dropouts CWE-79
6.1
6.1
2021-10-22 CVE-2020-23042 Cross-site Scripting vulnerability in Dropouts Super Backup 2.0.5
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module.
network
low complexity
dropouts CWE-79
6.1
6.1
2021-10-22 CVE-2020-23061 Path Traversal vulnerability in Dropouts Super Backup 2.0.5
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the `list` and `download` module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command.
network
low complexity
dropouts CWE-22
7.5
7.5
2021-10-22 CVE-2020-36489 Cross-site Scripting vulnerability in Dropouts AIR Share 1.2
Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting (XSS) vulnerability in the devicename parameter.
network
low complexity
dropouts CWE-79
5.4
5.4