Lucene search
HistoryJan 14, 2023 - 2:15 p.m.
CVE-2022-2815
github
publify
sensitive info
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
31.1%
Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10.
Affected configurations
Node
publify_projectpublifyRange<9.2.10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| publify_project | publify | * | cpe:2.3:a:publify_project:publify:*:*:*:*:*:*:*:* |
Related
prion
prion
Information disclosure
2023-01-14 14:15:00
cvelist
cvelist
CVE-2022-2815 Insecure Storage of Sensitive Information in publify/publify
2023-01-14 00:00:00
osv
osv
CVE-2022-2815
2023-01-14 14:15:09
Publify Core does not strip metadata from images
2023-01-14 15:30:24
BIT-publify-2022-2815
2024-03-06 11:03:01
huntr
huntr
Metadata Is Not Stripped From Images
2022-05-22 20:12:52
rubygems
rubygems
Publify Core does not strip metadata from images
2023-01-13 21:00:00
cve
cve
CVE-2022-2815
2023-01-14 14:15:09
github
github
Publify Core does not strip metadata from images
2023-01-14 15:30:24
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
31.1%
Related for NVD:CVE-2022-2815