CVE-2022-23077
In habitica versions v4.119.0 through v4.232.2 are vulnerable to DOM XSS via the login page.
6.1CVSS
5.9AI Score
0.0004EPSS
CVE-2022-23078
In habitica versions v4.119.0 through v4.232.2 are vulnerable to open redirect via the login page.
6.7AI Score
0.001EPSS