Vulnerabilities > Opentrade Project

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-11	CVE-2020-6847	Cross-site Scripting vulnerability in Opentrade Project Opentrade 0.2.0 OpenTrade through 0.2.0 has a DOM-based XSS vulnerability that is executed when an administrator attempts to delete a message that contains JavaScript. network low complexity opentrade-project CWE-79	5.4
2019-11-25	CVE-2019-19250	SQL Injection vulnerability in Opentrade Project Opentrade 0.2.0 OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and server/utils.js. network low complexity opentrade-project CWE-89 critical	9.8

Vulnerabilities > Opentrade Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Opentrade Project"}]}