Vulnerabilities > Sickrage > Sickrage > 9.0.74

DATE CVE VULNERABILITY TITLE RISK
2021-04-12 CVE-2021-25925 Cross-site Scripting vulnerability in Sickrage
in SiCKRAGE, versions 4.2.0 to 10.0.11.dev1 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly when processed by the server.
network
low complexity
sickrage CWE-79
5.4
5.4
2018-03-31 CVE-2018-9160 Insufficiently Protected Credentials vulnerability in Sickrage
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
network
low complexity
sickrage CWE-522
critical
 9.8
9.8