wallabag/wallabag is vulnerable to Improper Authorization. A remote attacker is able to gain access to unauthorized projects from other users due to insecure direct object references which is made possible because of improper validation of the user permissions.
CPE | Name | Operator | Version |
---|---|---|---|
wallabag/wallabag | le | 2.5.2 | |
wallabag/wallabag | le | 2.5.2 |