search

github / advisory-database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Creative Commons Attribution 4.0 International
1.67k stars 305 forks source link

[GHSA-hxgx-584x-vwm8] Appwrite Server-Side Request Forgery vulnerability #4514

Closed abnegate closed 1 day ago

abnegate commented 1 month ago

Updates

Comments Fixed in 1.3.0, confidentiality is low as no internal data is exposed.

JonathanLEvans commented 1 month ago

Hi @abnegate, thank you for your contribution. Could you provide a reference link that documents the fix in 1.3.0?

Also, while we can update the description in our database, we cannot update the description of the CVE record because the ID was assigned by MITRE. To get MITRE to update the record, you need to contact them using the "Request an update to an existing CVE Entry" form at https://cveform.mitre.org/.

Similarly, the CVSS vector was generated by the NVD so you will need to contact them using their form.