Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:39642
HistoryMar 10, 2023 - 10:14 p.m.

Information Disclosure

2023-03-1022:14:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
28
redmine
information disclosure
file attachments
permission checks
configuration
registered user
software

0.002 Low

EPSS

Percentile

52.6%

JSON

redmine is vulnerable to Information Disclosure. The library allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user.

CPENameOperatorVersion
redmine:sideq4.0.7-1
redmine:sideq4.0.7-1

Related

cve 1
osv 2
cvelist 1
nvd 1
ubuntucve 1
prion 1
debiancve 1
cve
cve
CVE-2022-44030
2022-12-06 23:15:10
osv
osv
BIT-redmine-2022-44030
2024-03-06 11:04:14
CVE-2022-44030
2022-12-06 23:15:10
cvelist
cvelist
CVE-2022-44030
2022-12-06 00:00:00
nvd
nvd
CVE-2022-44030
2022-12-06 23:15:10
ubuntucve
ubuntucve
CVE-2022-44030
2022-12-06 00:00:00
prion
prion
Design/Logic Flaw
2022-12-06 23:15:00
debiancve
debiancve
CVE-2022-44030
2022-12-06 23:15:10

0.002 Low

EPSS

Percentile

52.6%

JSON
Related for VERACODE:39642
cve1osv2cvelist1nvd1ubuntucve1prion1debiancve1