Lucene search

CVE-2023-23608

🗓️ 26 Jan 2023 21:13:18Reported by [email protected]Type

Spotipy Python library prior to version 2.22.1 allows malicious URI to perform an operation on a different API endpoint

Reporter	Title	Published	Views	Family All 10
Tenable Nessus	FreeBSD : Spotipy -- Path traversal vulnerability (c3fb48cc-a2ff-11ed-8fbc-6cf0490a8c18)	2 Feb 202300:00	–	nessus
Prion	Design/Logic Flaw	26 Jan 202321:18	–	prion
OSV	CVE-2023-23608	26 Jan 202321:18	–	osv
OSV	Path traversal in spotipy	23 Jan 202322:05	–	osv
CVE	CVE-2023-23608	26 Jan 202321:18	–	cve
Cvelist	CVE-2023-23608 spotipy Path traversal vulnerability that may lead to type confusion in URI handling code	24 Jan 202302:39	–	cvelist
Github Security Blog	Path traversal in spotipy	23 Jan 202322:05	–	github
FreeBSD	Spotipy -- Path traversal vulnerability	16 Jan 202300:00	–	freebsd
Vulnrichment	CVE-2023-23608 spotipy Path traversal vulnerability that may lead to type confusion in URI handling code	24 Jan 202302:39	–	vulnrichment
Veracode	Path Traversal	27 Jan 202306:37	–	veracode

Nvd

Node

spotipy_project spotipyRange<2.22.1

Source	Link
github	www.github.com/spotipy-dev/spotipy/security/advisories/GHSA-q764-g6fm-555v

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Jan 2023 21:18Current

4Medium risk

Vulners AI Score4

CVSS34.3

EPSS0.00313

CWE-22