First published: Wed Jan 15 2020(Updated: )
An issue was discovered in Serpico (aka SimplE RePort wrIting and CollaboratiOn tool) 1.3.0. The Add Collaborator allows unlimited data via the author parameter, even if the data does not match anything in the database.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Serpico Project Serpico | =1.3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.