GSA_kwCzR0hTQS12bXhnLXd4NmMtNGYzcs4AA0CZ

Low EPSS: 0.00061% (0.19467 Percentile) EPSS:

Permalink JSON

Admidio Improper Access Control vulnerability

Affected Packages	Affected Versions	Fixed Versions
packagist:admidio/admidio	< 4.2.9	4.2.9
1 Dependent packages 1 Dependent repositories 23 Downloads total Affected Version Ranges All affected versions 4.1.0, 4.1.3, 4.2.0, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7, 4.2.8 All unaffected versions 4.2.9, 4.2.10, 4.2.11, 4.2.12, 4.2.13, 4.2.14, 4.3.0, 4.3.1, 4.3.2, 4.3.3, 4.3.4, 4.3.5, 4.3.6, 4.3.7, 4.3.8, 4.3.9, 4.3.10, 4.3.11, 4.3.12, 4.3.13, 4.3.14, 4.3.15

Admidio prior to 4.2.9 is vulnerable to Improper Access Control.

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-3303
https://github.com/admidio/admidio/commit/3d8bafaa4e9b7a314ffdf548622a8c7b38faee8a
https://huntr.dev/bounties/65d260cc-55a9-4e71-888d-cb2f66c071af
https://github.com/advisories/GHSA-vmxg-wx6c-4f3r

Identifiers

GHSA-vmxg-wx6c-4f3r

CVE-2023-3303

Risk

Severity

Low

EPSS

EPSS Percentage: 0.00061

EPSS Percentile: 0.19467

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://github.com/admidio/admidio

Date and time

Published

about 2 years ago

Updated

over 1 year ago

API

JSON

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Advisories