CVE-2024-51210

Firepad through 1.5.11 allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. NOTE: in several similar products, this is the intentional behavior for anyone who knows the full...

Sensitive Information Exposure

Firepad is vulnerable to Sensitive Information Exposure. The vulnerability is due to improper access controls, allowing attackers with knowledge of a pad ID to retrieve the current document text and all previously pasted content...

GHSA-4FH7-M2WX-6WFM Firepad allows insecure document access

Firepad through 1.5.11 allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. NOTE: in several similar products, this is the intentional behavior for anyone who knows the full...

custom-firepad-toolbar (>=1.0.0 <=1.0.3), devshare (>=0.1.0 <=0.4.0-alpha) +5 more potentially affected by CVE-2024-51210 via firepad (>=1.3.0 <=1.5.11)

firepad NPM version =1.3.0, =1.0.0, =0.1.0, =0.0.50, =0.5.1, =0.9.9 - redux-devshare =0.3.0 Source cves: CVE-2024-51210 Source advisory: OSV:GHSA-4FH7-M2WX-6WFM...

Firepad allows insecure document access

Firepad through 1.5.11 allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. NOTE: in several similar products, this is the intentional behavior for anyone who knows the full...

CVE-2024-51210

Firepad through 1.5.11 allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. NOTE: in several similar products, this is the intentional behavior for anyone who knows the full...

CVE-2024-51210

Firepad through 1.5.11 allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. NOTE: in several similar products, this is the intentional behavior for anyone who knows the full...

Firepad 安全漏洞

Firepad is an open source collaborative code and text editor from FirebaseExtended Open Source. A security vulnerability exists in Firepad 1.5.11 and earlier versions, which stems from a vulnerability that allows a remote attacker who knows the pad ID to retrieve the current text of a document, a...

CVE-2024-51210

Firepad 1.5.11 and earlier versions are affected. Remote attackers who know a pad ID can retrieve the current document text and all previously pasted content due to an access-control vulnerability; several listings note this behavior is intentional for known document IDs/URLs. The maintainer-stat...

CVE-2024-51210

Firepad through 1.5.11 allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. NOTE: in several similar products, this is the intentional behavior for anyone who knows the full...

PT-2024-34563 · Firepad · Firepad

Name of the Vulnerable Software and Affected Versions: Firepad versions 1.5.11 and earlier Description: The issue allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. This behavi...

CVE-2024-51210

Firepad through 1.5.11 allows remote attackers, who have knowledge of a pad ID, to retrieve both the current text of a document and all content that has previously been pasted into the document. NOTE: in several similar products, this is the intentional behavior for anyone who knows the full...