How severe is CVE-2021-25973?

CVE-2021-25973 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2021-25973

Name: publify
Author: publify_project

6.5MEDIUM

In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when the admin does not allow. This happens due to front-end restriction only.

公開日: 11/2/2021更新日: 11/21/2024

説明

In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when the admin does not allow. This happens due to front-end restriction only.

AI分析AIによる分析

影響を受ける製品

publify_projectpublify

参照

https://github.com/publify/publify/commit/3447e0241e921b65f6eb1090453d8ea73e98387e
PatchThird Party Advisory
https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25973
Third Party Advisory
https://github.com/publify/publify/commit/3447e0241e921b65f6eb1090453d8ea73e98387e
PatchThird Party Advisory
https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25973
Third Party Advisory