Moderate severityNVD Advisory· Published Nov 28, 2018· Updated Sep 16, 2024
CVE-2018-19620
CVE-2018-19620
Description
ShowDoc 2.4.1 allows remote attackers to edit other users' notes by navigating with a modified page_id.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
showdoc/showdocPackagist | < 2.4.2 | 2.4.2 |
Affected products
1Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-pfrc-5hhq-6hvrghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-19620ghsaADVISORY
- github.com/CCCCCrash/POCs/tree/master/Web/showdoc/IncorrectAccessControlghsax_refsource_MISCWEB
- github.com/star7th/showdoc/commit/bcdb5e3519285bdf81e618b3c9b90d22bc49e13cghsax_refsource_MISCWEB
- github.com/star7th/showdoc/commits/v2.4.2ghsaWEB
- github.com/star7th/showdoc/issues/397ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.