3 matches found
CVE-2023-32669
Authorization bypass vulnerability in BuddyBoss 2.2.9 version, the exploitation of which could allow an authenticated user to access and rename other users' albums. This vulnerability can be exploited by changing the album identification id...
CVE-2023-32669 Authorization Bypass on BuddyBoss
Authorization bypass vulnerability in BuddyBoss 2.2.9 version, the exploitation of which could allow an authenticated user to access and rename other users' albums. This vulnerability can be exploited by changing the album identification id...
CVE-2023-32669
CVE-2023-32669 describes an authorization bypass in BuddyBoss 2.2.9 . An authenticated user can change the album identifier (id) to access and rename other users’ photo albums, constituting a violation of access controls. Documented impact indicates that confidentiality and integrity could be aff...