exploitDog

GHSA-xqh5-95vp-q7f3

Опубликовано: 01 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.9

Описание

Authorization Bypass Through User-Controlled Key vulnerability in themeglow JobBoard Job listing allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects JobBoard Job listing: from n/a through 1.2.7.

Authorization Bypass Through User-Controlled Key vulnerability in themeglow JobBoard Job listing allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects JobBoard Job listing: from n/a through 1.2.7.

Ссылки

EPSS

Процентиль: 31%

0.00117

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2025-31833

nvd

около 1 года назад

Authorization Bypass Through User-Controlled Key vulnerability in themeglow JobBoard Job listing job-board-light allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JobBoard Job listing: from n/a through <= 1.2.8.

EPSS

Процентиль: 31%

0.00117

Низкий

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-639