Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:35569
HistoryMay 17, 2022 - 7:55 a.m.

Information Disclosure

2022-05-1707:55:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
information disclosure
show_article function
meta tags
password-protected articles
software

EPSS

0.001

Percentile

26.1%

JSON

publify_core is vulnerable to information disclosure. The vulnerability exists in show_article function in articles_controller.rb because the content of the article in meta tags of a response is not properly restricted which allows an attacker to view the contents of password-protected articles.

Related

osv 3
github 1
cnvd 1
huntr 1
prion 1
nvd 1
cve 1
rubygems 1
cvelist 1
osv
osv
BIT-publify-2022-1553
2024-03-06 11:03:42
Publify exposes article metadata
2022-05-17 00:01:41
CVE-2022-1553
2022-05-16 15:15:09
github
github
Publify exposes article metadata
2022-05-17 00:01:41
cnvd
cnvd
Publify Information Disclosure Vulnerability
2022-05-18 00:00:00
huntr
huntr
Leaking password protected articles content due to improper access control
2022-04-10 10:27:53
prion
prion
Improper access control
2022-05-16 15:15:00
nvd
nvd
CVE-2022-1553
2022-05-16 15:15:09
cve
cve
CVE-2022-1553
2022-05-16 15:15:09
rubygems
rubygems
Article metadata exposure in publify
2022-05-16 21:00:00
cvelist
cvelist
CVE-2022-1553 Leaking password protected articles content due to improper access control in publify/publify
2022-05-16 14:31:58

EPSS

0.001

Percentile

26.1%

JSON
Related for VERACODE:35569
osv3github1cnvd1huntr1prion1nvd1cve1rubygems1cvelist1