wallabag/wallabag Security Advisories for 2.6.1 (3)
-
[MEDIUM] Wallabag user can disable 2FA unintentionally
PKSA-rpn3-c2zq-8bxc GHSA-56fm-hfp3-x3w3
Affected version: >=2.0.0-alpha.1,<2.6.7
Reported by:
GitHub -
[MEDIUM] Wallabag user can reset data unintentionally
PKSA-grtz-7vrv-bfdf CVE-2023-4454 GHSA-p8gp-899c-jvq9
Affected version: >=2.0.0-alpha.1,<=2.6.2
Reported by:
GitHub -
[MEDIUM] Wallabag user can delete own API client unintentionally
PKSA-w8zw-n8jy-dww5 CVE-2023-4455 GHSA-gjvc-55fw-v6vq
Affected version: >=2.0.0-alpha.1,<=2.6.2
Reported by:
GitHub