Insufficient Session Expiration in GitHub repository firefly-iii/firefly-iii prior to 6.
References
Link | Resource |
---|---|
https://github.com/firefly-iii/firefly-iii/commit/68f398f97cbe1870fc098d8460bf903b9c3fab30 | Patch |
https://huntr.dev/bounties/79323c9e-e0e5-48ef-bd19-d0b09587ccb2 | Permissions Required |
Configurations
Configuration 1 (hide)
|
History
12 Apr 2023, 00:51
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:firefly-iii:firefly_iii:6.0.0:beta2:*:*:*:*:*:* cpe:2.3:a:firefly-iii:firefly_iii:6.0.0:beta1:*:*:*:*:*:* cpe:2.3:a:firefly-iii:firefly_iii:6.0.0:alpha1:*:*:*:*:*:* cpe:2.3:a:firefly-iii:firefly_iii:*:*:*:*:*:*:*:* cpe:2.3:a:firefly-iii:firefly_iii:6.0.0:alpha2:*:*:*:*:*:* |
|
First Time |
Firefly-iii firefly Iii
Firefly-iii |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
References | (CONFIRM) https://huntr.dev/bounties/79323c9e-e0e5-48ef-bd19-d0b09587ccb2 - Permissions Required | |
References | (MISC) https://github.com/firefly-iii/firefly-iii/commit/68f398f97cbe1870fc098d8460bf903b9c3fab30 - Patch |
05 Apr 2023, 17:35
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-05 16:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-1788
Mitre link : CVE-2023-1788
CVE.ORG link : CVE-2023-1788
JSON object : View
Products Affected
firefly-iii
- firefly_iii
CWE
CWE-613
Insufficient Session Expiration