Vulnerabilities > Softr

DATE CVE VULNERABILITY TITLE RISK
2023-02-06 CVE-2022-48085 Cross-site Scripting vulnerability in Softr 2.0
Softr v2.0 was discovered to contain a HTML injection vulnerability via the Work Space Name parameter.
network
low complexity
softr CWE-79
5.4
2022-12-19 CVE-2022-40434 Cross-site Scripting vulnerability in Softr 2.0
Softr v2.0 was discovered to be vulnerable to HTML injection via the Name field of the Account page.
network
low complexity
softr CWE-79
critical
9.8
2022-10-27 CVE-2022-32407 Cross-site Scripting vulnerability in Softr 2.0
Softr v2.0 was discovered to contain a Cross-Site Scripting (XSS) vulnerability via the First Name parameter under the Create A New Account module.
network
low complexity
softr CWE-79
6.1