Etherpad: >> Ueberdb >> 1.1.3 Security Vulnerabilities
In Etherpad UeberDB < 0.4.4, due to MySQL omitting trailing spaces on char / varchar columns during comparisons, retrieving database records using UeberDB's MySQL connector could allow bypassing access controls enforced on key names.
CVSS Score
7.5
EPSS Score
0.002
Published
2021-04-28