How severe is CVE-2021-25973?

CVE-2021-25973 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2021-25973

Name: publify
Author: publify_project

6.5MEDIUM

In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when the admin does not allow. This happens due to front-end restriction only.

发布于: 11/2/2021更新于: 11/21/2024

描述

In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when the admin does not allow. This happens due to front-end restriction only.

AI分析AI驱动

受影响产品

publify_projectpublify

参考资料

https://github.com/publify/publify/commit/3447e0241e921b65f6eb1090453d8ea73e98387e
PatchThird Party Advisory
https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25973
Third Party Advisory
https://github.com/publify/publify/commit/3447e0241e921b65f6eb1090453d8ea73e98387e
PatchThird Party Advisory
https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25973
Third Party Advisory