Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HAnswer
APPAnswer< 1.0.6
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
Related vulnerabilities
CVE-2023-0740CRITICAL9.0ten sam produkt
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0741CRITICAL9.0ten sam produkt
Cross-site Scripting (XSS) - DOM in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0742CRITICAL9.0ten sam produkt
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0743CRITICAL9.0ten sam produkt
Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0744CRITICAL9.8ten sam produkt
Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.