Описание
Incorrect Access Control vulnearbility in Halo 0.4.3, which allows a malicious user to bypass encrption to view encrpted articles via cookies.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:halo:halo:0.4.3:*:*:*:*:*:*:*
EPSS
Процентиль: 39%
0.00179
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
Incorrect Access Control vulnearbility in Halo 0.4.3, which allows a malicious user to bypass encrption to view encrpted articles via cookies.
EPSS
Процентиль: 39%
0.00179
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-287