Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-18423
HistoryMar 07, 2022 - 12:00 a.m.

Uppy Access Control Error Vulnerability

2022-03-0700:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
uppy
access control
vulnerability
github
unauthorized access
transloadit

EPSS

0.001

Percentile

51.0%

Uppy is a Transloadit open source open source file uploader for web browsers. versions prior to Uppy 3.3.1 contain an access control error vulnerability that stems from a network system or product that does not properly restrict access to resources from unauthorized roles. An unauthorized attacker could exploit this vulnerability to obtain sensitive information from GitHub repositories.

EPSS

0.001

Percentile

51.0%