NotCVE - vendor:"Telegram" product:"Web K Alpha" version:"

2 results (0.007 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-40532

https://notcve.org/view.php?id=CVE-2021-40532

Telegram Web K Alpha before 0.7.2 mishandles the characters in a document extension. Telegram Web K Alpha versiones anteriores a 0.7.2, maneja inapropiadamente los caracteres de una extensión de documento. • https://github.com/morethanwords/tweb/commit/f224e459c36eb96b2cf9dba559a48b1f08d23330 •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-37596

https://notcve.org/view.php?id=CVE-2021-37596

Telegram Web K Alpha 0.6.1 allows XSS via a document name. Telegram Web K Alpha versión 0.6.1, permite un ataque de tipo XSS por medio de un nombre de documento • https://github.com/morethanwords/tweb/commit/11d2fe01363889f20c8baa2217ed4aad445c5551 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •