Lucene search
K

5 matches found

GithubExploit
GithubExploit
added 2023/03/21 5:5 p.m.484 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Ibexa Ezplatform-Graphql

CVE-2022-41876 - eZ Platform user information disclosure A vu...

7.5CVSS5.3AI score0.01295EPSS
Exploits1
NVD
NVD
added 2022/11/10 9:15 p.m.40 views

CVE-2022-41876

ezplatform-graphql is a GraphQL server implementation for Ibexa DXP and Ibexa Open Source. Versions prior to 2.3.12 and 1.0.13 are subject to Insecure Storage of Sensitive Information. Unauthenticated GraphQL queries for user accounts can expose password hashes of users that have created or...

7.5CVSS0.01295EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/11/10 12:0 a.m.42 views

CVE-2022-41876 ezplatform-graphql GraphQL queries can expose password hashes

ezplatform-graphql is a GraphQL server implementation for Ibexa DXP and Ibexa Open Source. Versions prior to 2.3.12 and 1.0.13 are subject to Insecure Storage of Sensitive Information. Unauthenticated GraphQL queries for user accounts can expose password hashes of users that have created or...

7.5CVSS7.8AI score0.01295EPSS
Exploits1References1
CVE
CVE
added 2022/11/10 12:0 a.m.118 views

CVE-2022-41876

CVE-2022-41876 affects ezplatform-graphql (Ibexa DXP and Ibexa Open Source). The vulnerability is caused by insecure storage that allows unauthenticated GraphQL queries to expose user password hashes (typically for admins/editors). Patches exist in Ibexa/DXP versions 2.3.12 and 1.0.13 on the 1.X ...

7.5CVSS5.6AI score0.01295EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/11/10 12:0 a.m.28 views

CVE-2022-41876 ezplatform-graphql GraphQL queries can expose password hashes

ezplatform-graphql is a GraphQL server implementation for Ibexa DXP and Ibexa Open Source. Versions prior to 2.3.12 and 1.0.13 are subject to Insecure Storage of Sensitive Information. Unauthenticated GraphQL queries for user accounts can expose password hashes of users that have created or...

7.5CVSS5.5AI score0.01295EPSS
Exploits1References3
Rows per page
Query Builder