EPSS
Percentile
31.3%
publify_core is vulnerable to privilege escalation. The vulnerability exists due to the front-end restrictions. A malicious user with a guest role can self-register, even if the admin does not allow it.
guest
github.com/publify/publify/commit/3447e0241e921b65f6eb1090453d8ea73e98387e
github.com/publify/publify/pull/1025
www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25973