Bytebase: >> Bytebase >> 0.7.0 Security Vulnerabilities
The “Bytebase” application does not restrict low privilege user to access “admin issues“ for which an unauthorized user can view the “OPEN” and “CLOSED” issues by “Admin” and the affected endpoint is “/issue”.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-09-28
The “Bytebase” application does not restrict low privilege user to access admin “projects“ for which an unauthorized user can view the “projects“ created by “Admin” and the affected endpoint is “/api/project?user=${userId}”.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-09-28