exploitDog

GHSA-qf98-5p3c-j3vc

Опубликовано: 05 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

DWSurvey 6.14.0 is vulnerable to Incorrect Access Control. When deleting a questionnaire, replacing the questionnaire ID with the ID of another questionnaire can enable the deletion of other questionnaires.

DWSurvey 6.14.0 is vulnerable to Incorrect Access Control. When deleting a questionnaire, replacing the questionnaire ID with the ID of another questionnaire can enable the deletion of other questionnaires.

Ссылки

EPSS

Процентиль: 17%

0.00054

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2025-63248

CVSS3: 7.5

nvd

3 месяца назад

DWSurvey 6.14.0 is vulnerable to Incorrect Access Control. When deleting a questionnaire, replacing the questionnaire ID with the ID of another questionnaire can enable the deletion of other questionnaires.

EPSS

Процентиль: 17%

0.00054

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-639