Vulnerabilities > Dropouts
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-22 | CVE-2020-23041 | Cross-site Scripting vulnerability in Dropouts AIR Share 1.2 Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` exception-handling. | 4.3 |
| 2021-10-22 | CVE-2020-23042 | Cross-site Scripting vulnerability in Dropouts Super Backup 2.0.5 Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module. | 4.3 |
| 2021-10-22 | CVE-2020-23061 | Path Traversal vulnerability in Dropouts Super Backup 2.0.5 Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the `list` and `download` module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command. | 5.0 |
| 2021-10-22 | CVE-2020-36489 | Cross-site Scripting vulnerability in Dropouts AIR Share 1.2 Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting (XSS) vulnerability in the devicename parameter. | 3.5 |