CVE-2022-1715: Account takeover in facturascripts

May 14, 2022 (updated May 25, 2022)

Account Takeover in GitHub repository neorazorx/facturascripts prior to 2022.07.

References

github.com/advisories/GHSA-vjq3-x3f2-fvxq
github.com/neorazorx/facturascripts/commit/714bebf4c35e3eedda138f5ee912a8031bc8b1ab
huntr.dev/bounties/58918962-ccb5-47f9-bb43-ffd8cae1ef24
nvd.nist.gov/vuln/detail/CVE-2022-1715

Detect and mitigate CVE-2022-1715 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →