Vulnerabilities > Globaldatingsoftware > Premiumdatingscript > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-09 | CVE-2021-41696 | Weak Password Requirements vulnerability in Globaldatingsoftware Premiumdatingscript 4.2.7.7 An authentication bypass (account takeover) vulnerability exists in Premiumdatingscript 4.2.7.7 due to a weak password reset mechanism in requests\user.php. | 6.5 |
| 2021-12-09 | CVE-2021-41697 | Cross-site Scripting vulnerability in Globaldatingsoftware Premiumdatingscript 4.2.7.7 A reflected Cross Site Scripting (XSS) vulnerability exists in Premiumdatingscript 4.2.7.7 via the aerror_description parameter in assets/sources/instagram.php script. | 6.1 |