CVE-2022-1553
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-1553
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1553.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-1553
- Aliases
- Published
- 2022-05-16T14:31:58Z
- Modified
- 2025-12-04T10:03:13.468973Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Leaking password protected articles content due to improper access control in publify/publify
- Details
-
Leaking password protected articles content due to improper access control in GitHub repository publify/publify prior to 9.2.8. Attackers can leverage this vulnerability to view the contents of any password-protected article present on the publify website, compromising confidentiality and integrity of users.
- Database specific
{ "cna_assigner": "@huntrdev", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1553.json", "cwe_ids": [ "CWE-284" ] }- References
Affected packages
Git / github.com/publify/publify
Affected ranges
- Type
- GIT
- Repo
- https://github.com/publify/publify
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
5_3_0
release_5_1_98
release_5_2_0
release_5_2_98
release_5_4_0
release_5_4_1
release_5_4_2
release_5_4_3
release_5_4_4
release_5_5
release_6_0_0
release_6_0_1
release_6_0_2
release_6_0_3
release_6_0_4
release_6_0_6
release_6_0_7
release_6_0_8
release_6_0_9
release_6_1_0
release_6_1_1
release_6_1_2
release_6_1_3
release_6_1_4
release_7_0_0-beta1
6.*
6.9.0
7.*
7.0.0
7.1.0
release-1.*
release-1.6.7
release-5.*
release-5.0.3
release-5.0.3-no-rly
release-5.0.3.98
release-5.1
release-5.1.1
release-5.1.2
release-5.1.3
v8.*
v8.0
v8.0.1
v8.0.2
v8.1.0
v8.1.1
v8.2.0
v8.3.0
v8.3.1
v8.3.2
v8.3.3
v9.*
v9.0.0
v9.0.1
v9.1.0
v9.2.0
v9.2.1
v9.2.2
v9.2.3
v9.2.4
v9.2.5
v9.2.6
v9.2.7