Описание
WebAPP before 0.9.9.5 does not check access in certain contexts related to (1) Calendar Administration, (2) Instant Messages Administration, and (3) the Image Uploader, which has unknown impact and attack vectors.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.9.9.4 (включая)
cpe:2.3:a:web-app.org:webapp:*:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00743
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
WebAPP before 0.9.9.5 does not check access in certain contexts related to (1) Calendar Administration, (2) Instant Messages Administration, and (3) the Image Uploader, which has unknown impact and attack vectors.
EPSS
Процентиль: 73%
0.00743
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other