VYPR
Medium severity4.3NVD Advisory· Published Jan 27, 2026· Updated Apr 14, 2026

CVE-2026-1213

CVE-2026-1213

Description

All versions of askbot before and including 0.12.2 allow an attacker authenticated with normal user permissions to modify the profile picture of other application users.This issue affects askbot: 0.12.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
askbotPyPI
< 0.12.30.12.3

Affected products

2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.