GO-2023-1660 Answer vulnerable to Business Logic Errors in github.com/answerdev/answer

Answer vulnerable to Business Logic Errors in github.com/answerdev/answer...

GO-2023-1613 Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer

Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer...

GO-2023-1619 Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer

Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer...

GO-2023-1592 Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer

Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer...

GO-2023-1617 Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer

Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer...

GO-2023-1615 Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer

Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer...

GO-2023-1620 Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer

Answer vulnerable to Cross-site Scripting in github.com/answerdev/answer...

GO-2023-1552 Answer has Cross-site Scripting vulnerability in github.com/answerdev/answer

Answer has Cross-site Scripting vulnerability in github.com/answerdev/answer...

GO-2023-1541 Cross-site scripting vulnerability found in answerdev/answer in github.com/answerdev/answer

Cross-site scripting vulnerability found in answerdev/answer in github.com/answerdev/answer...

GO-2023-1551 Answer subject to Cross-site Scripting vulnerability in github.com/answerdev/answer

Answer subject to Cross-site Scripting vulnerability in github.com/answerdev/answer...

GO-2023-1553 Answer vulnerable to Race Condition in github.com/answerdev/answer

Answer vulnerable to Race Condition in github.com/answerdev/answer...

CVE-2023-4815

Missing Authentication for Critical Function in GitHub repository answerdev/answer prior to v1.1.3...

CVE-2023-4815 Missing Authentication for Critical Function in answerdev/answer

Missing Authentication for Critical Function in GitHub repository answerdev/answer prior to v1.1.3...

CVE-2023-4815 Missing Authentication for Critical Function in answerdev/answer

Missing Authentication for Critical Function in GitHub repository answerdev/answer prior to v1.1.3...

CVE-2023-4815

CVE-2023-4815 affects the GitHub repository answerdev/answer, where a Missing Authentication for Critical Function vulnerability exists prior to v1.1.3. The root cause is lack of authentication for critical functions, enabling an attacker to potentially change roles (including administrator). The...

GHSA-J63X-F657-2M9G Answer has Weak Password Requirements

Weak Password Requirements in GitHub repository answerdev/answer prior to v1.1.0...

CVE-2023-4124

Missing Authorization in GitHub repository answerdev/answer prior to v1.1.1...

CVE-2023-4127

Race Condition within a Thread in GitHub repository answerdev/answer prior to v1.1.1...

CVE-2023-4126

Insufficient Session Expiration in GitHub repository answerdev/answer prior to v1.1.0...

Session fixation

Insufficient Session Expiration in GitHub repository answerdev/answer prior to v1.1.0...