Vulnerabilities > Portainer > Portainer > 1.18.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-27 | CVE-2018-19466 | Insufficiently Protected Credentials vulnerability in Portainer A vulnerability was found in Portainer before 1.20.0. | 5.0 |
| 2018-11-20 | CVE-2018-19367 | Unspecified vulnerability in Portainer Portainer through 1.19.2 provides an API endpoint (/api/users/admin/check) to verify that the admin user is already created. | 5.0 |
| 2018-09-01 | CVE-2018-16316 | Cross-site Scripting vulnerability in Portainer A stored Cross-site scripting (XSS) vulnerability in Portainer through 1.19.1 allows remote authenticated users to inject arbitrary JavaScript and/or HTML via the Team Name field. | 3.5 |