exploitDog

GHSA-jmw9-579m-cw2x

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

Ссылки

EPSS

Процентиль: 33%

0.00126

Низкий

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2020-13272

CVSS3: 7.5

ubuntu

больше 5 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVE-2020-13272

CVSS3: 7.5

nvd

больше 5 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13.0.1 allows unverified user to use OAuth authorization code flow

CVE-2020-13272

CVSS3: 7.5

debian

больше 5 лет назад

OAuth flow missing verification checks CE/EE 12.3 and later through 13 ...

EPSS

Процентиль: 33%

0.00126

Низкий

CVE ID

Дефекты

CWE-863