Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:58 a.m.6 views

CVE-2023-31123

effectindex/tripreporter is a community-powered, universal platform for submitting and analyzing trip reports. Prior to commit bd80ba833b9023d39ca22e29874296c8729dd53b, any user with an account on an instance of effectindex/tripreporter, e.g. subjective.report, may be affected by an improper...

9.1CVSS6.9AI score0.00649EPSS
Exploits0References1
NVD
NVD
added 2023/05/08 9:15 p.m.15 views

CVE-2023-31123

effectindex/tripreporter is a community-powered, universal platform for submitting and analyzing trip reports. Prior to commit bd80ba833b9023d39ca22e29874296c8729dd53b, any user with an account on an instance of effectindex/tripreporter, e.g. subjective.report, may be affected by an improper...

9.1CVSS9.2AI score0.00649EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/08 8:1 p.m.6 views

CVE-2023-31123 effectindex/tripreporter vulnerable to improper password verification on POST `/api/v1/account/login`

effectindex/tripreporter is a community-powered, universal platform for submitting and analyzing trip reports. Prior to commit bd80ba833b9023d39ca22e29874296c8729dd53b, any user with an account on an instance of effectindex/tripreporter, e.g. subjective.report, may be affected by an improper...

9.1CVSS9.1AI score0.00649EPSS
Exploits0References2
OSV
OSV
added 2023/05/08 8:1 p.m.18 views

CVE-2023-31123 effectindex/tripreporter vulnerable to improper password verification on POST `/api/v1/account/login`

effectindex/tripreporter is a community-powered, universal platform for submitting and analyzing trip reports. Prior to commit bd80ba833b9023d39ca22e29874296c8729dd53b, any user with an account on an instance of effectindex/tripreporter, e.g. subjective.report, may be affected by an improper...

9.1CVSS9AI score0.00649EPSS
Exploits0References4
CVE
CVE
added 2023/05/08 8:1 p.m.38 views

CVE-2023-31123

The CVE-2023-31123 entry concerns the project effectindex/tripreporter . Affected component: login flow, specifically POST /api/v1/account/login. Root cause: improper password verification before the commit bd80ba833b9023d39ca22e29874296c8729dd53b, enabling any user whose password meets the requi...

9.1CVSS9.2AI score0.00649EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/05/08 12:0 a.m.4 views

tripreporter 授权问题漏洞

tripreporter is a community-driven, general-purpose platform for submitting and analyzing trip reports. effectindex tripreporter bd80ba833b9023d39ca22e29874296c8729dd53b A vulnerability in authorization issues exists in previous versions, which stems from allowing any user whose password meets th...

9.1CVSS8.3AI score0.00649EPSS
Exploits0References3
Rows per page
Query Builder