exploitDog

GHSA-qhmh-x535-r77m

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Because of insufficient authorization checks it is possible for any authenticated user to change profile data of other users in Pleasant Password Server before 7.8.3.

Because of insufficient authorization checks it is possible for any authenticated user to change profile data of other users in Pleasant Password Server before 7.8.3.

Ссылки

EPSS

Процентиль: 50%

0.00265

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2017-17708

CVSS3: 4.3

nvd

больше 7 лет назад

Because of insufficient authorization checks it is possible for any authenticated user to change profile data of other users in Pleasant Password Server before 7.8.3.

EPSS

Процентиль: 50%

0.00265

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-863