3s3s/opentrade

Releases0

Stars404

OpenTrade - Open Source Cryptocurrency Exchange

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-6847 ↗	Jan 11, 2020Saturday, 11 January 2020, 04:15	5.4 MEDIUM	3.5 LOW
OpenTrade through 0.2.0 has a DOM-based XSS vulnerability that is executed when an administrator attempts to delete a message that contains JavaScript.
CVE-2019-19250 ↗	Nov 25, 2019Monday, 25 November 2019, 17:15	9.8 CRITICAL	7.5 HIGH
OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and server/utils.js.