Vulnerabilities > Owasp > Dependency Track

DATE CVE VULNERABILITY TITLE RISK
2022-10-25 CVE-2022-39351 Cleartext Storage of Sensitive Information vulnerability in Owasp Dependency-Track
Dependency-Track is a Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
local
low complexity
owasp CWE-312
4.4
2019-07-29 CVE-2019-1020007 Cross-site Scripting vulnerability in Owasp Dependency-Track
Dependency-Track before 3.5.1 allows XSS.
network
owasp CWE-79
3.5