Opentrade Project
opentrade_project
2 CVEs • 1 product
Products (1)
Click to collapseToggle
Products (1)
Click to collapse
CVEs (2)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
OpenTrade through 0.2.0 has a DOM-based XSS vulnerability that is executed when an administrator attempts to delete a message that contains JavaScript. |
1Opentrade Project 1Opentrade Jun 17, 2026 Nov 25, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and server/utils.js. |