CVE-2022-1810
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-1810
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-1810.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-1810
- Aliases
- Published
- 2022-05-23T00:00:00Z
- Modified
- 2025-11-28T02:35:24.871065Z
- Severity
-
- 9.9 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H CVSS Calculator
- Summary
- Authorization Bypass Through User-Controlled Key in publify/publify
- Details
-
Authorization Bypass Through User-Controlled Key in GitHub repository publify/publify prior to 9.2.9.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1810.json", "cwe_ids": [ "CWE-639" ], "cna_assigner": "@huntrdev" }- References
Affected packages
Git / github.com/publify/publify
Affected ranges
- Type
- GIT
- Repo
- https://github.com/publify/publify
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
5_3_0
release_5_1_98
release_5_2_0
release_5_2_98
release_5_4_0
release_5_4_1
release_5_4_2
release_5_4_3
release_5_4_4
release_5_5
release_6_0_0
release_6_0_1
release_6_0_2
release_6_0_3
release_6_0_4
release_6_0_6
release_6_0_7
release_6_0_8
release_6_0_9
release_6_1_0
release_6_1_1
release_6_1_2
release_6_1_3
release_6_1_4
release_7_0_0-beta1
6.*
6.9.0
7.*
7.0.0
7.1.0
release-1.*
release-1.6.7
release-5.*
release-5.0.3
release-5.0.3-no-rly
release-5.0.3.98
release-5.1
release-5.1.1
release-5.1.2
release-5.1.3
v8.*
v8.0
v8.0.1
v8.0.2
v8.1.0
v8.1.1
v8.2.0
v8.3.0
v8.3.1
v8.3.2
v8.3.3
v9.*
v9.0.0
v9.0.1
v9.1.0
v9.2.0
v9.2.1
v9.2.2
v9.2.3
v9.2.4
v9.2.5
v9.2.6
v9.2.7
v9.2.8