All 8 CVE vulnerabilities found in Passwordstate, with AI-generated Chinese analysis, references, and POCs.
Vendor: Click Studios
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-59453 | Click Studios Passwordstate 安全漏洞 CWE-669 | 3.2 | Low | 2025-09-16 |
| CVE-2022-3875 | Click Studios Passwordstate API authentication bypass by assumed-immutable data CWE-302 | 7.3 | High | 2022-12-19 |
| CVE-2022-3876 | Click Studios Passwordstate API authorization CWE-266 | 4.3 | Medium | 2022-12-19 |
| CVE-2022-3877 | Click Studios Passwordstate URL Field cross site scripting CWE-707 | 3.5 | Low | 2022-12-19 |
| CVE-2022-4610 | Click Studios Passwordstate risky encryption CWE-310 | 1.9 | Low | 2022-12-19 |
| CVE-2022-4611 | Click Studios Passwordstate hard-coded credentials CWE-798 | 4.3 | Medium | 2022-12-19 |
| CVE-2022-4612 | Click Studios Passwordstate insufficiently protected credentials CWE-522 | 4.3 | Medium | 2022-12-19 |
| CVE-2022-4613 | Click Studios Passwordstate Browser Extension Provisioning improper authorization CWE-266 | 5.0 | Medium | 2022-12-19 |
All 8 known CVE vulnerabilities affecting Passwordstate with full Chinese analysis, references, and POCs where available.