Описание
ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user.
EPSS
Процентиль: 14%
0.00046
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-1220
Связанные уязвимости
CVSS3: 5.3
github
4 месяца назад
ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user.
EPSS
Процентиль: 14%
0.00046
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-1220