Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Leaking password protected articles content due to improper access control in publify/publify
Vulnerability Description
Leaking password protected articles content due to improper access control in GitHub repository publify/publify prior to 9.2.8. Attackers can leverage this vulnerability to view the contents of any password-protected article present on the publify website, compromising confidentiality and integrity of users.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
Publify 安全漏洞
Vulnerability Description
Publify是一个简单但功能齐全的网络发布软件。 Publify 9.2.8之前版本存在安全漏洞,该漏洞源于访问控制不当,泄露受密码保护的文章内容。攻击者利用该漏洞查看发布网站上存在的任何受密码保护的文章的内容,从而损害用户的机密性和完整性。
CVSS Information
N/A
Vulnerability Type
N/A