Lucene search

Docassemble unauthorized access through URL manipulation

🗓️ 29 Feb 2024 22:46:14Reported by GoogleType

osv🔗 osv.dev👁 13 Views

Unauthorized access through URL manipulation, patched in version 1.4.9

Reporter	Title	Published	Views	Family All 11
NVD	CVE-2024-27292	21 Mar 202402:52	–	nvd
Github Security Blog	Docassemble unauthorized access through URL manipulation	29 Feb 202422:14	–	github
Veracode	Improper Access Control	4 Mar 202414:42	–	veracode
GithubExploit	Exploit for CVE-2024-27292	21 Dec 202403:35	–	githubexploit
GithubExploit	Exploit for CVE-2024-27292	2 Jul 202404:41	–	githubexploit
CVE	CVE-2024-27292	21 Mar 202402:52	–	cve
Nuclei	Docassemble - Local File Inclusion	1 Jul 202415:24	–	nuclei
OSV	CVE-2024-27292	21 Mar 202402:52	–	osv
Cvelist	CVE-2024-27292 Docassemble unauthorized access through URL manipulation	29 Feb 202421:56	–	cvelist
Vulnrichment	CVE-2024-27292 Docassemble unauthorized access through URL manipulation	29 Feb 202421:56	–	vulnrichment

Source	Link
github	www.github.com/jhpyle/docassemble/security/advisories/GHSA-jq57-3w7p-vwvv
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-27292
github	www.github.com/jhpyle/docassemble/commit/97f77dc486a26a22ba804765bfd7058aabd600c9
github	www.github.com/jhpyle/docassemble

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Feb 2024 22:14Current

6.7Medium risk

Vulners AI Score6.7

CVSS37.5

EPSS0.89571

SSVC