Lucene search
@huntrdevCVELIST:CVE-2022-2815HistoryJan 14, 2023 - 12:00 a.m.
CVE-2022-2815 Insecure Storage of Sensitive Information in publify/publify
2023-01-1400:00:00
CWE-922
@huntrdev
www.cve.org
7
cve-2022-2815
insecure storage
sensitive information
github
publify
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
EPSS
0.001
Percentile
31.1%
Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10.
CNA Affected
[
{
"vendor": "publify",
"product": "publify/publify",
"versions": [
{
"version": "unspecified",
"lessThan": "9.2.10",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
prion
prion
Information disclosure
2023-01-14 14:15:00
osv
osv
CVE-2022-2815
2023-01-14 14:15:09
BIT-publify-2022-2815
2024-03-06 11:03:01
Publify Core does not strip metadata from images
2023-01-14 15:30:24
huntr
huntr
Metadata Is Not Stripped From Images
2022-05-22 20:12:52
rubygems
rubygems
Publify Core does not strip metadata from images
2023-01-13 21:00:00
nvd
nvd
CVE-2022-2815
2023-01-14 14:15:09
github
github
Publify Core does not strip metadata from images
2023-01-14 15:30:24
cve
cve
CVE-2022-2815
2023-01-14 14:15:09
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
EPSS
0.001
Percentile
31.1%
Related for CVELIST:CVE-2022-2815