Vulnerabilities > Tp4A
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-26 | CVE-2018-19555 | Cross-Site Request Forgery (CSRF) vulnerability in Tp4A Teleport 3.1.0 tp4a TELEPORT 3.1.0 has CSRF via user/do-reset-password to change any password, such as the administrator password. | 6.8 |
| 2018-11-15 | CVE-2018-19301 | Cross-site Scripting vulnerability in Tp4A Teleport 3.1.0 tp4a TELEPORT 3.1.0 allows XSS via the login page because a crafted username is mishandled when an administrator later views the system log. | 4.3 |