Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-41191
HistoryOct 27, 2021 - 9:15 p.m.

CVE-2021-41191

2021-10-2721:15:08
Google
osv.dev
5
roblox-purchasing-hub
security risk
version 1.0.2
api url
product files
api key
workaround

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

49.2%

JSON

Roblox-Purchasing-Hub is an open source Roblox product purchasing hub. A security risk in versions 1.0.1 and prior allowed people who have someone’s API URL to get product files without an API key. This issue is fixed in version 1.0.2. As a workaround, add @require_apikey in BOT/lib/cogs/website.py under the route for /v1/products.

Related

cvelist 1
cve 1
nvd 1
prion 1
cvelist
cvelist
CVE-2021-41191 API giving out files without key
2021-10-27 20:30:11
cve
cve
CVE-2021-41191
2021-10-27 21:15:08
nvd
nvd
CVE-2021-41191
2021-10-27 21:15:08
prion
prion
Code injection
2021-10-27 21:15:00

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

49.2%

JSON
Related for OSV:CVE-2021-41191
cvelist1cve1nvd1prion1