Unrated severityNVD Advisory· Published Jul 21, 2022· Updated Apr 23, 2025
Tovy before v0.7.51 vulnerable to users logging in as and impersonating other users
CVE-2022-31164
Description
Tovy is a a staff management system for Roblox groups. A vulnerability in versions prior to 0.7.51 allows users to log in as other users, including privileged users such as the other of the instance. The problem has been patched in version 0.7.51.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- github.com/tovyblox/tovy/pull/63mitrex_refsource_MISC
- github.com/tovyblox/tovy/security/advisories/GHSA-j6f8-wh4v-jc37mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.