Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/168423/Bookwyrm-0.4.3-Authentication-Bypass.html | Exploit Third Party Advisory VDB Entry |
https://github.com/bookwyrm-social/bookwyrm/commit/7bbe42fb30a79a26115524d18b697d895563c92f | Patch Third Party Advisory |
https://huntr.dev/bounties/428eee94-f1a0-45d0-9e25-318641115550 | Exploit Patch Third Party Advisory |
Configurations
History
29 Sep 2022, 15:41
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://packetstormsecurity.com/files/168423/Bookwyrm-0.4.3-Authentication-Bypass.html - Exploit, Third Party Advisory, VDB Entry |
20 Sep 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Aug 2022, 15:55
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Joinbookwyrm
Joinbookwyrm bookwyrm |
|
References | (CONFIRM) https://huntr.dev/bounties/428eee94-f1a0-45d0-9e25-318641115550 - Exploit, Patch, Third Party Advisory | |
References | (MISC) https://github.com/bookwyrm-social/bookwyrm/commit/7bbe42fb30a79a26115524d18b697d895563c92f - Patch, Third Party Advisory | |
CPE | cpe:2.3:a:joinbookwyrm:bookwyrm:*:*:*:*:*:*:*:* |
04 Aug 2022, 09:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-08-04 09:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-2651
Mitre link : CVE-2022-2651
CVE.ORG link : CVE-2022-2651
JSON object : View
Products Affected
joinbookwyrm
- bookwyrm
CWE
CWE-305
Authentication Bypass by Primary Weakness