Lucene search
RubySecRUBY:PUBLIFY_CORE-2022-2815HistoryJan 13, 2023 - 9:00 p.m.
Publify Core does not strip metadata from images
2023-01-1321:00:00
RubySec
github.com
15
publify
metadata
images
insecure storage
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Insecure Storage of Sensitive Information in GitHub repository publify/publify
prior to 9.2.10.
Affected configurations
Node
rubypublify_coreRange≤9.2.10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ruby | publify_core | * | cpe:2.3:a:ruby:publify_core:*:*:*:*:*:*:*:* |
Related
prion
prion
Information disclosure
2023-01-14 14:15:00
cvelist
cvelist
CVE-2022-2815 Insecure Storage of Sensitive Information in publify/publify
2023-01-14 00:00:00
osv
osv
CVE-2022-2815
2023-01-14 14:15:09
BIT-publify-2022-2815
2024-03-06 11:03:01
Publify Core does not strip metadata from images
2023-01-14 15:30:24
huntr
huntr
Metadata Is Not Stripped From Images
2022-05-22 20:12:52
nvd
nvd
CVE-2022-2815
2023-01-14 14:15:09
github
github
Publify Core does not strip metadata from images
2023-01-14 15:30:24
cve
cve
CVE-2022-2815
2023-01-14 14:15:09
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Related for RUBY:PUBLIFY_CORE-2022-2815