Passwordstate@* Security Vulnerabilities and Issues — Passwordstate@* CVE List

Lucene search

ClickstudiosPasswordstate*

8 matches found

CVE•added 2022/12/19 3:15 p.m.•49 views

CVE-2022-4611

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This affects an unknown part. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The exploit has been disclosed t...

5.3CVSS4.9AI score0.12916EPSS

CVE•added 2024/11/29 4:15 a.m.•43 views

CVE-2024-54124

In Click Studios Passwordstate before build 9920, there is a potential permission escalation on the edit folder screen.

8.8CVSS7.2AI score0.00101EPSS

CVE•added 2022/12/19 3:15 p.m.•42 views

CVE-2022-4613

A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as critical. This issue affects some unknown processing of the component Browser Extension Provisioning. The manipulation leads to improper authorization. The attack may be initiated r...

6.5CVSS5.8AI score0.00152EPSS

CVE•added 2022/12/19 3:15 p.m.•40 views

CVE-2022-4610

A vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Affected by this issue is some unknown functionality. The manipulation leads to risky cryptographic algorithm. Local access is required to approach this at...

5.5CVSS4.6AI score0.00053EPSS

CVE•added 2020/10/05 2:15 p.m.•36 views

CVE-2020-26061

ClickStudios Passwordstate Password Reset Portal prior to build 8501 is affected by an authentication bypass vulnerability. The ResetPassword function does not validate whether the user has successfully authenticated using security questions. An unauthenticated, remote attacker can send a crafted H...

7.5CVSS7.8AI score0.06784EPSS

CVE•added 2022/12/19 3:15 p.m.•32 views

CVE-2022-4612

A vulnerability has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome and classified as problematic. This vulnerability affects unknown code. The manipulation leads to insufficiently protected credentials. The attack can be initiated remotely. The exploit has been...

6.5CVSS5.3AI score0.00381EPSS

CVE•added 2018/08/01 6:29 a.m.•28 views

CVE-2018-14776

Click Studios Passwordstate before 8.3 Build 8397 allows XSS by authenticated users via an uploaded HTML document.

5.4CVSS5.1AI score0.00294EPSS

CVE•added 2023/11/13 9:15 a.m.•23 views

CVE-2023-47801

An issue was discovered in Click Studios Passwordstate before 9811. Existing users (Security Administrators) could use the System Wide API Key to read or delete private password records when specifically used with the PasswordHistory API endpoint. It is also possible to use the Copy/Move Password R...

4.7CVSS4.8AI score0.00089EPSS