Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NPublify Project Publify
APPPublify Project< 9.2.10
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2023-0299CRITICAL9.8ten sam produkt
Improper Input Validation in GitHub repository publify/publify prior to 9.2.10.
CVE-2022-1812CRITICAL9.8ten sam produkt
Integer Overflow or Wraparound in GitHub repository publify/publify prior to 9.2.10.
CVE-2022-0524HIGH7.5ten sam produkt
Business Logic Errors in GitHub repository publify/publify prior to 9.2.7.
CVE-2023-0569MEDIUM6.5ten sam produkt
Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10.
CVE-2022-1810MEDIUM4.3ten sam produkt
Authorization Bypass Through User-Controlled Key in GitHub repository publify/publify prior to 9.2.9.