exploitDog

GHSA-2crh-r3wq-qg9g

Опубликовано: 21 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be downloaded through thumb.php with no permission check.

In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be downloaded through thumb.php with no permission check.

Ссылки

EPSS

Процентиль: 47%

0.0024

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2022-33913

CVSS3: 7.5

ubuntu

около 3 лет назад

In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be downloaded through thumb.php with no permission check.

CVE-2022-33913

CVSS3: 7.5

nvd

около 3 лет назад

In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, files can sometimes be downloaded through thumb.php with no permission check.

CVE-2022-33913

CVSS3: 7.5

debian

около 3 лет назад

In Mahara 21.04 before 21.04.6, 21.10 before 21.10.4, and 22.04.2, fil ...

EPSS

Процентиль: 47%

0.0024

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-863