Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Passwork Subscribe
Filtered by product Passwork
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-42956 1 Passwork 1 Passwork 2022-11-08 N/A 7.5 HIGH
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain the cleartext master password.
CVE-2022-42955 1 Passwork 1 Passwork 2022-11-08 N/A 7.5 HIGH
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain cleartext cached credentials.
CVE-2022-25269 1 Passwork 1 Passwork 2022-03-29 4.3 MEDIUM 6.1 MEDIUM
Passwork On-Premise Edition before 4.6.13 has multiple XSS issues.
CVE-2022-25268 1 Passwork 1 Passwork 2022-03-29 6.8 MEDIUM 8.8 HIGH
Passwork On-Premise Edition before 4.6.13 allows CSRF via the groups, password, and history subsystems.
CVE-2022-25267 1 Passwork 1 Passwork 2022-03-29 6.5 MEDIUM 8.8 HIGH
Passwork On-Premise Edition before 4.6.13 allows migration/uploadExportFile Directory Traversal (to upload files).
CVE-2022-25266 1 Passwork 1 Passwork 2022-03-29 4.0 MEDIUM 4.3 MEDIUM
Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal (to read files).