Improperly Controlled Modification of Dynamically-Determined Object Attributes

Overview django-unicorn is an A magical full-stack framework for Django. Affected versions of this package are vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes via unvalidated attribute access within the action parsers that fail to enforce visibility...

EUVD-2021-29706

Malicious code in bioql PyPI...

CVE-2021-42748

In Beaver Builder through 2.5.0.3, attackers can bypass the visibility controls protection mechanism via the REST API...

CVE-2021-42748

In Beaver Builder through 2.5.0.3, attackers can bypass the visibility controls protection mechanism via the REST API...

Security feature bypass

In Beaver Builder through 2.5.0.3, attackers can bypass the visibility controls protection mechanism via the REST API...

CVE-2021-42748

CVE-2021-42748 affects Beaver Builder up to version 2.5.0.3. The issue allows attackers to bypass the visibility controls protection mechanism via the REST API, enabling unauthorized exposure of content. The vulnerability’s root cause is a bypass of visibility controls in REST API handling, with ...

CVE-2021-42748

In Beaver Builder through 2.5.0.3, attackers can bypass the visibility controls protection mechanism via the REST API...

PT-2022-11674 · Unknown · Beaver Builder

Name of the Vulnerable Software and Affected Versions: Beaver Builder versions prior to 2.5.0.4 Description: The issue allows attackers to bypass the visibility controls protection mechanism. This can be achieved via the REST API. Recommendations: For versions prior to 2.5.0.4, update to version...