CVE-2022-32320

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-32320

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-32320.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-32320

Published

2022-07-17T17:15:08.180Z

Modified

2025-11-14T13:22:33.986040Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A Cross-Site Request Forgery (CSRF) in Ferdi through 5.8.1 and Ferdium through 6.0.0-nightly.98 allows attackers to read files via an uploaded file such as a settings/preferences file.

References

Affected packages

Git / github.com/ferdium/ferdium-app

Affected ranges

Type: GIT
Repo: https://github.com/ferdium/ferdium-app
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

06cbde5e00b2ff98a2726d715ddaad16ab8cc285

Last affected

1342ace5eeaad5c7830ab0cc71e89745bd995b63

Last affected

15837241761c35fb2425e01d91c927dca0839128

Last affected

16ff66a926f3abad54cab8d1972498f32147e92e

Last affected

18abd67376a40408bce7a5cf2dab8ea3443719c6

Last affected

20beb97e854be8151a640ed61b4cc76ecac8d02f

Last affected

20c27345c20faf1800b64f2344a816399a06d64b

Last affected

27457cea92d3a12c7b88a76ede9a9a9fb07c1bb5

Last affected

2b86b5458e7616089abd423f45ae2dc9c2dff12e

Last affected

2c2040731602f2b3dc9f797f141ed7e27952e42e

Last affected

2db797e5d7fde26852a750f4937cc55c0d6f2ff7

Last affected

3207f855a23ae07f5b4ec6e2df35156301788555

Last affected

32556a82fde67504325d1a4ace1c40a0f1a44df1

Last affected

33a7e39803d4fb20a79776841c8aa15d99cc9e2d

Last affected

354daf8b8f3d4ba764094ce0642e3378ee154f5b

Last affected

37715d9640f4b6034fa3a678accb1247ba44d55d

Last affected

379cf94b705b7417a4f3ffdb3ee4b37f3190834f

Last affected

39b17aeb289c057ed68094fd21326e08e10cc40a

Last affected

3fb4abecb5f59c8ce02c93443efee917eb698dce

Last affected

42bf3f310d882b9ce016df3335b0fe01630328aa

Last affected

482996567d2477451d7b3b45cadb7e63f5da193d

Last affected

4a961263ae93b790c688fb00f47d75a545cdbd43

Last affected

4b6c892b56003682557fab3126d1061f965da1df

Last affected

4f705a0760afa0a9157af3ea1244af7eed624675

Last affected

50599381a703ce2569255badfc8dc1a72846e20a

Last affected

515f8a892f8012e697691f5400c5858e89f0222b

Last affected

53b73fd20d4ecefd7270c3b55edcd71ebbe2e13e

Last affected

5656202e90c53f54d94dde42c71b73228f1ae019

Last affected

5767c0a73d9f312459259b27ba9ec5971b0666a5

Last affected

6050f61acdf8e2e66c2ffe5ec25dce54c157f781

Last affected

608c244da1ccfd8f8340a3d935ca50ab326dd69d

Last affected

6bcc7517141138453281b1fc09932de2754b3e8f

Last affected

6c4482bd6d980e43b836eccc42d82f79b1d580b9

Last affected

6e126a8c9d0bf398bddeb9a231d08a372844474b

Last affected

71bb18a7e536668190e8d446c168cbf50c2aa8af

Last affected

72fb64cc5eed897edfd5d03bb8f07db1e4067104

Last affected

738ddbf8fc8fe9a9092e3ab06a623d58ab37c5c1

Last affected

750920ceed7ae1d53a2953428e21f9f6acf580c1

Last affected

7625d5419b336fb35c13b8a388d22f5f7358a4ff

Last affected

77f464dbfcd759ab12c87632e60a789610aed027

Last affected

79cafe4e7b21c460f3136236893fa9a8d6f4cc31

Last affected

7c893adc74d88f8c06297c9c4a87c882a5eefca0

Last affected

812acd02d9597bfbd1615b9ff5e7e989a5cc98df

Last affected

851aab12202a8c785abf00c3442156fb516ceb4f

Last affected

858d9b524cfdfcacc01f8b5d45884d28001cba7d

Last affected

87a2afef0728bf32227192472f08fd89f23ca46a

Last affected

87c014348a7aaf1dc3f6a636e8f167c95733916d

Last affected

88b63d54cd9f2b897f05a4cf89e3414004c91ca4

Last affected

8bd534e61dcdb4e29a3b39ef74c7930d1364700e

Last affected

907e14aeee60f4e35be72f927a685ddc66c19403

Last affected

90b8784a214d7091b03515d29d4bf3ef58c3017f

Last affected

915bee0d9f746c9f1ae732f6f0b428dbb0940fd5

Last affected

93fdd6ce364d848d4e17585606d67c3452df8621

Last affected

953cfc419b103b9e21be427a982a989390dd07c8

Last affected

955ab6b5c79e91a78cdfb73cb262fc51663ba6d0

Last affected

9dd6809d68f2bba0876a9a5bfb70c8e3d6127bae

Last affected

9e84c0acba5c8ad813d84f9ba43328ad3f5c79c3

Last affected

9f547e21200361c444b3bed61206a5ce3f989480

Last affected

9fadea4784f7aa23ebbcc308742afb90e0cc8db2

Last affected

a062aa89d7c1ac00db3ebed3e3ba26ffebb1f45d

Last affected

a30d4a18e73aad93bf9643e0fa01eac5eeddc608

Last affected

a5e26851ba6b887e31dc504b29f4262d3e6a470c

Last affected

a8cd53775d183c28dee2608b4b82a1278315bb6c

Last affected

a9734df19a242e221f796bfcec45db13803feea4

Last affected

ac964ef02b42a95b03af1c9108fa0a9a77b43252

Last affected

afadc2335f7754694fcf3d1e65ba1a2a51a16993

Last affected

b0ffa83edd6cb2bdf56fb16d434e354510a2a1ab

Last affected

b3ae44a1a38041f2fdaf2382434de9b96166afaf

Last affected

bc2b20e6f878bd14918868379794709d06e6382c

Last affected

bd2b589a5471d587659f66bfa0a1eaee700d6555

Last affected

bf30c0e315edec70c91768b364c4fa19e7bcc7d6

Last affected

bf486b76a0bb33f8d27c8005059b1d9f0b83135f

Last affected

c8627d2be9c66c528774bf1853dd17f5bf30d0fc

Last affected

c9da24a2a4701b1b24ac120878ffe4312088e731

Last affected

cf9333c505ba379d13c37b1aac70844d23887153

Last affected

cfa29a3f2d21d367909be6dcf4670c9974cc7b25

Last affected

d12b306c75389f98492d9723f1c87f3721ab93fe

Last affected

d77d7e41957ef025d3bbdeefbceef61bf4e64c95

Last affected

d7c4f090697d076ca79c51b20c8f0cdfdf6caaf1

Last affected

dabc2ab8a4370c2d97ffab595e668e2d99995764

Last affected

daf96c03c20a7cf0413abcf4af20d14f8b98a93c

Last affected

dd71c2017d661685c17edd4ffe49dda059b52c0e

Last affected

df71bc2ec9055d3b7f2ae4b2aed7f38dbf5030f3

Last affected

e49f8dda4cfe44017ca6003324411ee0fa97c402

Last affected

e6a5c3c6d068e3d87d0a43edb1ef399a1c19e331

Last affected

e7d0115a3125bfe868a37050f708ab8a08dcb9e9

Last affected

e9853c02ec810a18cc01c0fea6b0f651cc0f7e4a

Last affected

ec128868148b1b91a780b0471e55224283ae7e00

Last affected

ec92cad7bb822b1d86311c1fc7fc1c2122f2b9fd

Last affected

ecd0fd558c598f548c87d0b5ce2b3f862590a59a

Last affected

ede8a099c001524109881a4414d515ecd99e3b4b

Last affected

f009ab71df428d9286a45c5804c5936a963edd46

Last affected

f071800966d75bb682d402a54b2f5a8d64054660

Last affected

f35aaab859e3495506cb16e95ca03ea76d2999a3

Last affected

f543a135b39743342771987a0aeb89068c6f1f14

Last affected

f769174ab3f268751fea2bf0e89ae1dd2aea2bf9

Last affected

ffc8fdbcb6f14608add3ecd04ade0db7b78dde9c

Affected versions

5.*

5.0.0-beta.12

5.0.0-beta.20

5.6.0-beta.1

5.6.0-beta.2

5.6.0-beta.3

Ferdi-5.*

Ferdi-5.0.0-beta.24

Ferdi-5.2.0-beta.3

Ferdi-5.2.1-beta.1

Ferdi-5.3.0

Other

v5.*

v5.0.0

v5.0.0-beta.10

v5.0.0-beta.11

v5.0.0-beta.12

v5.0.0-beta.13

v5.0.0-beta.14

v5.0.0-beta.15

v5.0.0-beta.16

v5.0.0-beta.17

v5.0.0-beta.18

v5.0.0-beta.19

v5.0.0-beta.20

v5.0.0-beta.21

v5.0.0-beta.22

v5.0.0-beta.23

v5.0.0-beta.24

v5.0.1-beta.1

v5.1.0

v5.1.0-beta.1

v5.2.0

v5.2.0-beta.1

v5.2.0-beta.2

v5.2.0-beta.3

v5.2.0-beta.4

v5.2.1-beta.1

v5.3.0

v5.3.1

v5.3.2

v5.3.3

v5.3.3-beta.1

v5.3.3-beta.2

v5.3.4-beta.1

v5.3.4-beta.2

v5.3.4-beta.3

v5.3.4-beta.4

v5.3.4-beta.5

v5.3.4-beta.6

v5.4.0

v5.4.0-beta.1

v5.4.0-beta.2

v5.4.0-beta.3

v5.4.0-beta.4

v5.4.1-beta.1

v5.4.1-beta.2

v5.4.1-beta.3

v5.4.1-beta.4

v5.4.1-beta.5

v5.4.1-beta.6

v5.4.3

v5.4.3-beta.1

v5.4.4-beta.1

v5.4.4-beta.2

v5.5.0

v5.5.0-gm

v5.5.0-gm.2

v5.6.0

v5.6.0-beta.4

v5.6.0-beta.5

v5.6.0-beta.7

v5.6.0-beta.8

v5.6.1

v5.6.1-beta.1

v5.6.1-beta.2

v5.6.1-beta.3

v5.6.1-beta.4

v5.6.1-nightly.10

v5.6.1-nightly.11

v5.6.1-nightly.12

v5.6.1-nightly.13

v5.6.1-nightly.15

v5.6.1-nightly.16

v5.6.1-nightly.17

v5.6.1-nightly.18

v5.6.1-nightly.19

v5.6.1-nightly.2

v5.6.1-nightly.21

v5.6.1-nightly.22

v5.6.1-nightly.23

v5.6.1-nightly.24

v5.6.1-nightly.25

v5.6.1-nightly.26

v5.6.1-nightly.27

v5.6.1-nightly.28

v5.6.1-nightly.29

v5.6.1-nightly.3

v5.6.1-nightly.30

v5.6.1-nightly.31

v5.6.1-nightly.32

v5.6.1-nightly.33

v5.6.1-nightly.34

v5.6.1-nightly.35

v5.6.1-nightly.36

v5.6.1-nightly.37

v5.6.1-nightly.38

v5.6.1-nightly.39

v5.6.1-nightly.4

v5.6.1-nightly.40

v5.6.1-nightly.41

v5.6.1-nightly.42

v5.6.1-nightly.43

v5.6.1-nightly.44

v5.6.1-nightly.45

v5.6.1-nightly.46

v5.6.1-nightly.47

v5.6.1-nightly.48

v5.6.1-nightly.49

v5.6.1-nightly.5

v5.6.1-nightly.50

v5.6.1-nightly.51

v5.6.1-nightly.52

v5.6.1-nightly.53

v5.6.1-nightly.54

v5.6.1-nightly.55

v5.6.1-nightly.56

v5.6.1-nightly.6

v5.6.1-nightly.7

v5.6.1-nightly.8

v5.6.1-nightly.9

v5.6.10-nightly.0

v5.6.10-nightly.1

v5.6.11-nightly.0

v5.6.11-nightly.1

v5.6.2

v5.6.2-nightly.1

v5.6.2-nightly.2

v5.6.3

v5.6.3-beta.1

v5.6.3-beta.2

v5.6.3-beta.3

v5.6.3-beta.4

v5.6.3-nightly.10

v5.6.3-nightly.11

v5.6.3-nightly.12

v5.6.3-nightly.13

v5.6.3-nightly.14

v5.6.3-nightly.15

v5.6.3-nightly.16

v5.6.3-nightly.17

v5.6.3-nightly.18

v5.6.3-nightly.19

v5.6.3-nightly.2

v5.6.3-nightly.20

v5.6.3-nightly.21

v5.6.3-nightly.22

v5.6.3-nightly.23

v5.6.3-nightly.24

v5.6.3-nightly.25

v5.6.3-nightly.26

v5.6.3-nightly.27

v5.6.3-nightly.28

v5.6.3-nightly.29

v5.6.3-nightly.3

v5.6.3-nightly.30

v5.6.3-nightly.31

v5.6.3-nightly.32

v5.6.3-nightly.33

v5.6.3-nightly.34

v5.6.3-nightly.35

v5.6.3-nightly.36

v5.6.3-nightly.37

v5.6.3-nightly.38

v5.6.3-nightly.39

v5.6.3-nightly.4

v5.6.3-nightly.40

v5.6.3-nightly.41

v5.6.3-nightly.42

v5.6.3-nightly.43

v5.6.3-nightly.44

v5.6.3-nightly.45

v5.6.3-nightly.46

v5.6.3-nightly.47

v5.6.3-nightly.48

v5.6.3-nightly.49

v5.6.3-nightly.5

v5.6.3-nightly.50

v5.6.3-nightly.51

v5.6.3-nightly.52

v5.6.3-nightly.53

v5.6.3-nightly.54

v5.6.3-nightly.6

v5.6.3-nightly.7

v5.6.3-nightly.8

v5.6.3-nightly.9

v5.6.4

v5.6.4-nightly.1

v5.6.4-nightly.10

v5.6.4-nightly.11

v5.6.4-nightly.12

v5.6.4-nightly.13

v5.6.4-nightly.14

v5.6.4-nightly.15

v5.6.4-nightly.16

v5.6.4-nightly.17

v5.6.4-nightly.18

v5.6.4-nightly.19

v5.6.4-nightly.2

v5.6.4-nightly.20

v5.6.4-nightly.21

v5.6.4-nightly.22

v5.6.4-nightly.23

v5.6.4-nightly.24

v5.6.4-nightly.25

v5.6.4-nightly.26

v5.6.4-nightly.27

v5.6.4-nightly.28

v5.6.4-nightly.29

v5.6.4-nightly.3

v5.6.4-nightly.30

v5.6.4-nightly.31

v5.6.4-nightly.32

v5.6.4-nightly.33

v5.6.4-nightly.34

v5.6.4-nightly.35

v5.6.4-nightly.4

v5.6.4-nightly.5

v5.6.4-nightly.6

v5.6.4-nightly.7

v5.6.4-nightly.8

v5.6.4-nightly.9

v5.6.5

v5.6.5-nightly.0

v5.6.5-nightly.1

v5.6.5-nightly.2

v5.6.5-nightly.3

v5.6.5-nightly.4

v5.6.5-nightly.5

v5.6.6-nightly.0

v5.6.6-nightly.1

v5.6.6-nightly.2

v5.6.6-nightly.3

v5.6.6-nightly.4

v5.6.6-nightly.5

v5.6.7

v5.6.7-nightly.0

v5.6.7-nightly.1

v5.6.8

v5.6.8-nightly.0

v5.6.9-nightly.0

v5.6.9-nightly.1

v5.6.9-nightly.2

v5.7.0

v5.7.1-nightly.0

v5.7.1-nightly.1

v5.7.1-nightly.10

v5.7.1-nightly.11

v5.7.1-nightly.12

v5.7.1-nightly.13

v5.7.1-nightly.14

v5.7.1-nightly.15

v5.7.1-nightly.16

v5.7.1-nightly.17

v5.7.1-nightly.18

v5.7.1-nightly.2

v5.7.1-nightly.3

v5.7.1-nightly.4

v5.7.1-nightly.5

v5.7.1-nightly.6

v5.7.1-nightly.7

v5.7.1-nightly.8

v5.7.1-nightly.9

v5.8.0

v5.8.1

v5.8.1-nightly.0

v5.8.1-nightly.1

v5.8.1-nightly.10

v5.8.1-nightly.11

v5.8.1-nightly.2

v5.8.1-nightly.3

v5.8.1-nightly.4

v5.8.1-nightly.5

v5.8.1-nightly.6

v5.8.1-nightly.7

v5.8.1-nightly.8

v5.8.1-nightly.9

v5.8.2-nightly.0

v5.8.2-nightly.1

v5.8.2-nightly.2

v5.8.2-nightly.3

v6.*

v6.0.0-nightly.1

v6.0.0-nightly.10

v6.0.0-nightly.11

v6.0.0-nightly.12

v6.0.0-nightly.13

v6.0.0-nightly.14

v6.0.0-nightly.15

v6.0.0-nightly.16

v6.0.0-nightly.17

v6.0.0-nightly.18

v6.0.0-nightly.19

v6.0.0-nightly.2

v6.0.0-nightly.20

v6.0.0-nightly.21

v6.0.0-nightly.22

v6.0.0-nightly.23

v6.0.0-nightly.24

v6.0.0-nightly.25

v6.0.0-nightly.26

v6.0.0-nightly.27

v6.0.0-nightly.28

v6.0.0-nightly.29

v6.0.0-nightly.3

v6.0.0-nightly.30

v6.0.0-nightly.31

v6.0.0-nightly.32

v6.0.0-nightly.33

v6.0.0-nightly.34

v6.0.0-nightly.35

v6.0.0-nightly.4

v6.0.0-nightly.5

v6.0.0-nightly.6

v6.0.0-nightly.7

v6.0.0-nightly.8

v6.0.0-nightly.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-32320.json"