exploitDog

GHSA-r5jf-6f2j-gqc9

Опубликовано: 21 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Authorization Bypass Through User-Controlled Key vulnerability in PAVO Inc. PAVO Pay allows Exploitation of Trusted Identifiers.This issue affects PAVO Pay: before 13.05.2025.

Authorization Bypass Through User-Controlled Key vulnerability in PAVO Inc. PAVO Pay allows Exploitation of Trusted Identifiers.This issue affects PAVO Pay: before 13.05.2025.

Ссылки

EPSS

Процентиль: 13%

0.00043

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2025-4129

CVSS3: 7.5

nvd

7 месяцев назад

Authorization Bypass Through User-Controlled Key vulnerability in PAVO Inc. PAVO Pay allows Exploitation of Trusted Identifiers.This issue affects PAVO Pay: before 13.05.2025.

EPSS

Процентиль: 13%

0.00043

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-639