Storage of Sensitive Data in a Mechanism without Access Control in GitHub repository francoisjacquet/rosariosis prior to 11.0.
References
Link | Resource |
---|---|
https://github.com/francoisjacquet/rosariosis/commit/09d5afaa6be07688ca1a7ac3b755b5438109e986 | Patch |
https://huntr.dev/bounties/42f38a84-8954-484d-b5ff-706ca0918194 | Permissions Required |
Configurations
History
19 May 2023, 17:12
Type | Values Removed | Values Added |
---|---|---|
First Time |
Rosariosis rosariosis
Rosariosis |
|
CPE | cpe:2.3:a:rosariosis:rosariosis:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
CWE | CWE-922 | |
References | (MISC) https://github.com/francoisjacquet/rosariosis/commit/09d5afaa6be07688ca1a7ac3b755b5438109e986 - Patch | |
References | (CONFIRM) https://huntr.dev/bounties/42f38a84-8954-484d-b5ff-706ca0918194 - Permissions Required |
12 May 2023, 01:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-12 01:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-2665
Mitre link : CVE-2023-2665
CVE.ORG link : CVE-2023-2665
JSON object : View
Products Affected
rosariosis
- rosariosis