Skip to main content

Web K Alpha

2 CVEs product

Monthly

CVE-2021-40532 CRITICAL PATCH Act Now

Telegram Web K Alpha before 0.7.2 mishandles the characters in a document extension. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Web K Alpha
NVD GitHub
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-37596 MEDIUM PATCH This Month

Telegram Web K Alpha 0.6.1 allows XSS via a document name. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Web K Alpha
NVD GitHub
CVSS 3.1
6.1
EPSS
0.6%
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Telegram Web K Alpha before 0.7.2 mishandles the characters in a document extension. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Web K Alpha
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM PATCH This Month

Telegram Web K Alpha 0.6.1 allows XSS via a document name. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Web K Alpha
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy