定价企业版

CVE-2022-2651

9.8CRITICAL

Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5.

发布于: 8/4/2022更新于: 11/21/2024

在NVD查看在MITRE查看

描述

Authentication Bypass by Primary Weakness in GitHub repository bookwyrm-social/bookwyrm prior to 0.4.5.

AI分析AI驱动

受影响产品

joinbookwyrmbookwyrm

可用漏洞利用 (1)

webappsmultipleVERIFIED

Bookwyrm v0.4.3 - Authentication Bypass

Akshay Ravi9/20/2022

参考资料

http://packetstormsecurity.com/files/168423/Bookwyrm-0.4.3-Authentication-Bypass.html
ExploitThird Party AdvisoryVDB Entry
https://github.com/bookwyrm-social/bookwyrm/commit/7bbe42fb30a79a26115524d18b697d895563c92f
PatchThird Party Advisory
https://huntr.dev/bounties/428eee94-f1a0-45d0-9e25-318641115550
ExploitPatchThird Party Advisory
http://packetstormsecurity.com/files/168423/Bookwyrm-0.4.3-Authentication-Bypass.html
ExploitThird Party AdvisoryVDB Entry
https://github.com/bookwyrm-social/bookwyrm/commit/7bbe42fb30a79a26115524d18b697d895563c92f
PatchThird Party Advisory
https://huntr.dev/bounties/428eee94-f1a0-45d0-9e25-318641115550
ExploitPatchThird Party Advisory