CVE-2022-2815

Insecure Storage of Sensitive Information in publify/publify

CVSS 4.6 MEDIUMEPSS 0.6%CWE-922

Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10.

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Affected products

publify · publify/publify

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/publify/publify/commit/af69097d349f4c00f244c51cd3c3e937fd3387cd https://huntr.dev/bounties/22fdcc39-8c1a-4e4c-8eae-be3fd764f8b4