Описание
Galette is a membership management web application for non profit organizations. Prior to version 1.2.0, while updating any existing account with a self forged POST request, one can gain higher privileges. Version 1.2.0 fixes the issue.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| galette | removed | package |
EPSS
Процентиль: 18%
0.00056
Низкий
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 2 месяцев назад
Galette is a membership management web application for non profit organizations. Prior to version 1.2.0, while updating any existing account with a self forged POST request, one can gain higher privileges. Version 1.2.0 fixes the issue.
CVSS3: 9.8
nvd
около 2 месяцев назад
Galette is a membership management web application for non profit organizations. Prior to version 1.2.0, while updating any existing account with a self forged POST request, one can gain higher privileges. Version 1.2.0 fixes the issue.
EPSS
Процентиль: 18%
0.00056
Низкий