Vulnerabilities (CVE)

Filtered by vendor Totaljs Subscribe
Filtered by product Openplatform
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-27070 1 Totaljs 1 Openplatform 2024-11-21 N/A 5.4 MEDIUM
A stored cross-site scripting (XSS) vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the platform name field.
CVE-2023-27069 1 Totaljs 1 Openplatform 2024-11-21 N/A 5.4 MEDIUM
A stored cross-site scripting (XSS) vulnerability in TotalJS OpenPlatform commit b80b09d allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the account name field.