Leakage Of Private Discussion

2022-08-0206:03:42

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

private discussion

vulnerability

fof/byobu

EPSS

0.001

Percentile

19.4%

JSON

fof/byobu is vulnerable to leakage of private discussion. Lack of enforcement of disablement to private discussion allows forum’s users to start private discussions with themselves.

References

github.com/FriendsOfFlarum/byobu/commit/23dcf93a30f948d30c678a96681f7fdefeba5171

github.com/FriendsOfFlarum/byobu/commit/8d540730d69e808fbe4ceabd1e3e6e3d7fd26fad

github.com/FriendsOfFlarum/byobu/security/advisories/GHSA-6gjm-6wj6-4px5

EPSS

0.001

Percentile

19.4%

JSON

Related for VERACODE:36558