CVE-2022-3327

Missing Authentication for Critical Function in ikus060/rdiffweb

CVSS 4.5 MEDIUMEPSS 0.7%CWE-306

Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.

CVSS:3.0/AV:P/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N

Affected products

ikus060 · ikus060/rdiffweb

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/ikus060/rdiffweb/commit/f2a32f2a9f3fb8be1a9432ac3d81d3aacdb13095 https://huntr.com/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1 https://huntr.dev/bounties/02207c8f-2b15-4a31-a86a-74fd2fca0ed1