Описание
A flaw was found in the 3scale Developer Portal. When creating or updating an account in the Developer Portal UI it is possible to modify fields explicitly configured as read-only or hidden, allowing an attacker to modify restricted information.
EPSS
Процентиль: 13%
0.00042
Низкий
7.5 High
CVSS3
Дефекты
CWE-281
Связанные уязвимости
CVSS3: 5.4
github
3 месяца назад
A flaw was found in the 3scale developer portal. This issue can allow account creation or updates passed through hidden or read-only fields, the contents of which may be altered. This flaw allows an attacker to access or modify restricted information.
EPSS
Процентиль: 13%
0.00042
Низкий
7.5 High
CVSS3
Дефекты
CWE-281