VYPR
Unrated severityNVD Advisory· Published Oct 24, 2022· Updated May 7, 2025

CVE-2022-41799

CVE-2022-41799

Description

Improper access control vulnerability in GROWI prior to v5.1.4 (v5 series) and versions prior to v4.5.25 (v4 series) allows a remote authenticated attacker to bypass access restriction and download the markdown data from the pages set to private by the other users.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Weseek/Growillm-fuzzy
    Range: <5.1.4 (v5 series) or <4.5.25 (v4 series)
  • WESEEK, Inc./GROWI v5 series and v4 seriesv5
    Range: versions prior to v5.1.4 (v5 series) and versions prior to v4.5.25 (v4 series)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.