Skip to main content

Passwordstate

13 CVEs product

Monthly

CVE-2023-47801 MEDIUM This Month

An issue was discovered in Click Studios Passwordstate before 9811. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Passwordstate
NVD
CVSS 3.1
4.7
EPSS
0.4%
CVE-2023-43295 LOW Monitor

Cross Site Request Forgery vulnerability in Click Studios (SA) Pty Ltd Passwordstate v.Build 9785 and before allows a local attacker to execute arbitrary code via a crafted request. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE CSRF Passwordstate
NVD
CVSS 3.1
3.5
EPSS
0.2%
CVE-2022-4613 MEDIUM POC This Month

A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as critical. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
CVSS 3.1
6.5
EPSS
0.7%
CVE-2022-4612 MEDIUM POC This Month

A vulnerability has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as problematic. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
CVSS 3.1
6.5
EPSS
0.9%
CVE-2022-4611 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Google Passwordstate
NVD VulDB
CVSS 3.1
5.3
EPSS
1.2%
CVE-2022-4610 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
CVSS 3.1
5.5
EPSS
0.2%
CVE-2022-3877 MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Google XSS Passwordstate
NVD VulDB
CVSS 3.1
5.4
EPSS
0.6%
CVE-2022-3876 MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
CVSS 3.1
6.5
EPSS
0.8%
CVE-2022-3875 HIGH POC This Week

A vulnerability classified as critical was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Google Passwordstate
NVD VulDB
CVSS 3.1
7.5
EPSS
1.0%
CVE-2022-25570 MEDIUM POC This Month

In Click Studios (SA) Pty Ltd Passwordstate 9435, users with access to a passwordlist can gain access to additional password lists without permissions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Passwordstate
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2020-27747 MEDIUM This Month

An issue was discovered in Click Studios Passwordstate 8.9 (Build 8973).If the user of the system has assigned himself a PIN code for entering from a mobile device using the built-in generator (4. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Passwordstate
NVD GitHub
CVSS 3.1
6.8
EPSS
1.1%
CVE-2020-26061 HIGH POC This Week

ClickStudios Passwordstate Password Reset Portal prior to build 8501 is affected by an authentication bypass vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Passwordstate
NVD GitHub
CVSS 3.1
7.5
EPSS
4.5%
CVE-2018-14776 MEDIUM This Month

Click Studios Passwordstate before 8.3 Build 8397 allows XSS by authenticated users via an uploaded HTML document. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Passwordstate
NVD
CVSS 3.0
5.4
EPSS
0.5%
EPSS 0% CVSS 4.7
MEDIUM This Month

An issue was discovered in Click Studios Passwordstate before 9811. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Passwordstate
NVD
EPSS 0% CVSS 3.5
LOW Monitor

Cross Site Request Forgery vulnerability in Click Studios (SA) Pty Ltd Passwordstate v.Build 9785 and before allows a local attacker to execute arbitrary code via a crafted request. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE CSRF Passwordstate
NVD
EPSS 1% CVSS 6.5
MEDIUM POC This Month

A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as critical. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
EPSS 1% CVSS 6.5
MEDIUM POC This Month

A vulnerability has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as problematic. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
EPSS 1% CVSS 5.3
MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Google Passwordstate
NVD VulDB
EPSS 0% CVSS 5.5
MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
EPSS 1% CVSS 5.4
MEDIUM POC This Month

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Google XSS Passwordstate
NVD VulDB
EPSS 1% CVSS 6.5
MEDIUM POC This Month

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Google Passwordstate
NVD VulDB
EPSS 1% CVSS 7.5
HIGH POC This Week

A vulnerability classified as critical was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Google Passwordstate
NVD VulDB
EPSS 1% CVSS 6.5
MEDIUM POC This Month

In Click Studios (SA) Pty Ltd Passwordstate 9435, users with access to a passwordlist can gain access to additional password lists without permissions. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Passwordstate
NVD
EPSS 1% CVSS 6.8
MEDIUM This Month

An issue was discovered in Click Studios Passwordstate 8.9 (Build 8973).If the user of the system has assigned himself a PIN code for entering from a mobile device using the built-in generator (4. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Passwordstate
NVD GitHub
EPSS 4% CVSS 7.5
HIGH POC This Week

ClickStudios Passwordstate Password Reset Portal prior to build 8501 is affected by an authentication bypass vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Passwordstate
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM This Month

Click Studios Passwordstate before 8.3 Build 8397 allows XSS by authenticated users via an uploaded HTML document. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Passwordstate
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy