exploitDog

GHSA-h8fm-xm3j-frcx

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request.

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request.

Ссылки

EPSS

Процентиль: 68%

0.00567

Низкий

CVE ID

Связанные уязвимости

CVE-2021-38095

CVSS3: 7.5

nvd

больше 4 лет назад

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request.

EPSS

Процентиль: 68%

0.00567

Низкий

CVE ID