CVE-2023-2104: Improper Access Control

April 15, 2023 (updated April 21, 2023)

Improper Access Control in GitHub repository alextselegidis/easyappointments prior to 1.5.0.

References

github.com/advisories/GHSA-fc4g-f42p-7rhp
github.com/alextselegidis/easyappointments/commit/75b24735767868344193fb2cc56e17ee4b9ac4be
huntr.dev/bounties/3099b8d1-c49c-41b8-a929-73ccded6fc7c
nvd.nist.gov/vuln/detail/CVE-2023-2104

Detect and mitigate CVE-2023-2104 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →