Lucene search
MitreCVELIST:CVE-2022-27978HistoryApr 26, 2023 - 12:00 a.m.
CVE-2022-27978
2023-04-2600:00:00
mitre
www.cve.org
2
cve-2022-27978
tooljet v1.6
api
password resets
http request
0.001 Low
EPSS
Percentile
45.5%
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request.
Related
nvd
nvd
CVE-2022-27978
2023-04-26 16:15:09
cve
cve
CVE-2022-27978
2023-04-26 16:15:09
prion
prion
Cross site request forgery (csrf)
2023-04-26 16:15:00
osv
osv
CVE-2022-27978
2023-04-26 16:15:09
wallarmlab
wallarmlab
ChatGPT: Friend or Foe? | API Security Newsletter
2023-05-16 13:58:20