2 matches found
CVE-2023-22903
api/views/user.py in LibrePhotos before e19e539 has incorrect access control...
CVE-2023-22903
CVE-2023-22903 affects LibrePhotos; the issue is in api/views/user.py with incorrect access control prior to the commit e19e539. CVSS v3.1 shows a CRITICAL score (9.8) with NETWORK attack vector, LOW exploitability, no privileges required, and impacts to confidentiality, integrity, and availabili...