{"id":"GHSA-8ccw-f83g-v7g3","summary":"Wallabag Improper Authorization vulnerability","details":"Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.4.","aliases":["CVE-2023-0734"],"modified":"2024-02-16T05:21:26.287113Z","published":"2023-03-05T21:30:14Z","database_specific":{"severity":"MODERATE","cwe_ids":["CWE-285"],"github_reviewed":true,"nvd_published_at":"2023-03-05T21:15:00Z","github_reviewed_at":"2023-03-07T20:13:40Z"},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-0734"},{"type":"WEB","url":"https://github.com/wallabag/wallabag/commit/acd285dcbb71b595e6320bb1d0d3a44cdf646ac0"},{"type":"WEB","url":"https://github.com/wallabag/wallabag"},{"type":"WEB","url":"https://github.com/wallabag/wallabag/releases/tag/2.5.4"},{"type":"WEB","url":"https://huntr.dev/bounties/a296324c-6925-4f5f-a729-39b0d73d5b8b"}],"affected":[{"package":{"name":"wallabag/wallabag","ecosystem":"Packagist","purl":"pkg:composer/wallabag/wallabag"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.5.4"}]}],"versions":["1.0-beta1","1.0-beta2","1.0-beta3","1.0-beta4","1.0-beta5","1.0-beta5.1","1.0-beta5.2","1.0.0","1.1.0","1.2.0","1.3.0","1.3.1","1.4.0","1.5.0","1.5.1","1.5.1.1","1.5.2","1.6.0","1.6.1","1.6.1b","1.7.0","1.7.1","1.7.2","1.8.0","1.8.1","1.8.1b","1.9","1.9.1","1.9.1-b","1.9.1alpha1","1.9.1alpha2","1.9.1beta1","1.9.1beta2","1.9.1beta3","1.9.2","1.9RC1","1.9beta","1.9beta2","2.0.0","2.0.0-alpha.0","2.0.0-alpha.1","2.0.0-alpha.2","2.0.0-beta.1","2.0.0-beta.2","2.0.1","2.0.2","2.0.3","2.0.4","2.0.5","2.0.6","2.0.7","2.0.8","2.1.0","2.1.1","2.1.2","2.1.3","2.1.4","2.1.5","2.1.6","2.1.6.1","2.2.0","2.2.1","2.2.2","2.2.3","2.3.0","2.3.1","2.3.2","2.3.3","2.3.4","2.3.5","2.3.6","2.3.7","2.3.8","2.4.0","2.4.1","2.4.2","2.4.3","2.5.0","2.5.1","2.5.2","2.5.3"],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/03/GHSA-8ccw-f83g-v7g3/GHSA-8ccw-f83g-v7g3.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}]}