exploitDog

GHSA-48x9-64j6-vm38

Опубликовано: 03 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Submitty before v22.06.00 is vulnerable to Incorrect Access Control. An attacker can delete any post in the forum by modifying request parameter.

Submitty before v22.06.00 is vulnerable to Incorrect Access Control. An attacker can delete any post in the forum by modifying request parameter.

Ссылки

EPSS

Процентиль: 46%

0.00236

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2023-43194

CVSS3: 5.3

nvd

больше 2 лет назад

Submitty before v22.06.00 is vulnerable to Incorrect Access Control. An attacker can delete any post in the forum by modifying request parameter.

EPSS

Процентиль: 46%

0.00236

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-862