Authorization Bypass Through User-Controlled Key in GitHub repository publify/publify prior to 9.2.9.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NPublify Project Publify
APPPublify Project< 9.2.9
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2023-0299CRITICAL9.8ten sam produkt
Improper Input Validation in GitHub repository publify/publify prior to 9.2.10.
CVE-2022-1812CRITICAL9.8ten sam produkt
Integer Overflow or Wraparound in GitHub repository publify/publify prior to 9.2.10.
CVE-2022-0524HIGH7.5ten sam produkt
Business Logic Errors in GitHub repository publify/publify prior to 9.2.7.
CVE-2023-0569MEDIUM6.5ten sam produkt
Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10.
CVE-2022-2815MEDIUM6.5ten sam produkt
Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10.