Количество 3
Количество 3
CVE-2020-11671
Lack of authorization controls in REST API functions in TeamPass through 2.1.27.36 allows any TeamPass user with a valid API token to become a TeamPass administrator and read/modify all passwords via authenticated api/index.php REST API calls. NOTE: the API is not available by default.
CVE-2020-11671
Lack of authorization controls in REST API functions in TeamPass throu ...
GHSA-gmr7-m73x-6c9q
Missing Authorization in TeamPass
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11671 Lack of authorization controls in REST API functions in TeamPass through 2.1.27.36 allows any TeamPass user with a valid API token to become a TeamPass administrator and read/modify all passwords via authenticated api/index.php REST API calls. NOTE: the API is not available by default. | CVSS3: 8.1 | 0% Низкий | почти 6 лет назад |
| CVE-2020-11671 Lack of authorization controls in REST API functions in TeamPass throu ... | CVSS3: 8.1 | 0% Низкий | почти 6 лет назад |
| GHSA-gmr7-m73x-6c9q Missing Authorization in TeamPass | CVSS3: 8.1 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу