Lucene search
China National Vulnerability DatabaseCNVD-2022-68880HistoryMay 18, 2022 - 12:00 a.m.
Publify Information Disclosure Vulnerability
2022-05-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
publify
information disclosure
vulnerability
web publishing
password exposure
attack
confidentiality
integrity
cnvd
EPSS
0.001
Percentile
26.1%
Publify is a simple but full-featured web publishing software.An information disclosure vulnerability exists in versions of Publify prior to 9.2.8. The vulnerability stems from the content of an article revealing a password in the response meta tag, which could be exploited by an attacker to view the content of any password-protected article present on the publishing site, compromising the confidentiality and integrity of the user.
Related
osv
osv
BIT-publify-2022-1553
2024-03-06 11:03:42
Publify exposes article metadata
2022-05-17 00:01:41
CVE-2022-1553
2022-05-16 15:15:09
github
github
Publify exposes article metadata
2022-05-17 00:01:41
huntr
huntr
Leaking password protected articles content due to improper access control
2022-04-10 10:27:53
prion
prion
Improper access control
2022-05-16 15:15:00
veracode
veracode
Information Disclosure
2022-05-17 07:55:57
nvd
nvd
CVE-2022-1553
2022-05-16 15:15:09
cve
cve
CVE-2022-1553
2022-05-16 15:15:09
rubygems
rubygems
Article metadata exposure in publify
2022-05-16 21:00:00
cvelist
cvelist