A vulnerability has been found in Facepay 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /face-recognition-php/facepay-master/camera.php. The manipulation of the argument userId leads to authorization bypass. The attack can be launched remotely. The identifier VDB-214789 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://vuldb.com/?id.214789 | Third Party Advisory |
Configurations
History
25 Jan 2024, 20:23
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
CWE | CWE-269 |
07 Nov 2023, 03:57
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-639 |
06 Dec 2022, 16:16
Type | Values Removed | Values Added |
---|---|---|
References | (N/A) https://vuldb.com/?id.214789 - Third Party Advisory | |
First Time |
Facepay Project
Facepay Project facepay |
|
CPE | cpe:2.3:a:facepay_project:facepay:1.0:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
05 Dec 2022, 12:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-05 07:15
Updated : 2024-01-25 20:23
NVD link : CVE-2022-4281
Mitre link : CVE-2022-4281
CVE.ORG link : CVE-2022-4281
JSON object : View
Products Affected
facepay_project
- facepay