Описание
Improper access control vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. This vulnerability could allow an unauthenticated user to access the application's functionalities without the need for credentials.
Уязвимые конфигурации
Конфигурация 1Версия до 2.1.10 (включая)
cpe:2.3:a:alma:alma_blog:*:*:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.00162
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 6.5
github
почти 2 года назад
Improper access control vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. This vulnerability could allow an unauthenticated user to access the application's functionalities without the need for credentials.
EPSS
Процентиль: 37%
0.00162
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-284