Vulnerabilities > Liveconfig > Liveconfig > 2.12.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-18 | CVE-2021-40840 | Cross-site Scripting vulnerability in Liveconfig 2.12.2 A Stored XSS issue exists in the admin/users user administration form in LiveConfig 2.12.2. | 5.4 |
| 2022-02-18 | CVE-2021-40841 | Path Traversal vulnerability in Liveconfig A Path Traversal vulnerability for a log file in LiveConfig 2.12.2 allows authenticated attackers to read files on the underlying server. | 6.5 |