CVE-2023-3700

MEDIUM6.3EPSS 0.02%

Easy!Appointments Improper Access Control vulnerability

Published: 7/17/2023Modified: 2/16/2024

Description

Easy!Appointments 1.4.3 and prior has an Improper Access Control vulnerability. This issue is patched at commit b37b46019553089db4f22eb2fe998bca84b2cb64 and anticipated to be part of version 1.5.0.

Affected packages (1)

Packagist/alextselegidis/easyappointmentsfrom 0, < 1.5.0

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM6.3	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

References (4)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2023-3700
PATCHhttps://github.com/alextselegidis/easyappointments
WEBhttps://github.com/alextselegidis/easyappointments/commit/b37b46019553089db4f22eb2fe998bca84b2cb64
WEBhttps://huntr.dev/bounties/e8d530db-a6a7-4f79-a95d-b77654cc04f8