logo

Database

Security controls bypass or absence In rdiffweb

Description

rdiffweb vulnerable to Business Logic Errors Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2022-47192. NVD-2022-47193. OSV-2022-47194. GCVE-2022-4719

References

1. https://github.com/ikus060/rdiffweb/commit/bc4bed89affcba71251fe54ed10639da9d392c1d2. https://github.com/pypa/advisory-database/tree/main/vulns/rdiffweb/PYSEC-2022-43005.yaml3. https://huntr.dev/bounties/9f746881-ad42-446b-9b1d-153391eacc09

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.