Description
Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9.
Remediation
References
https://github.com/plantuml/plantuml/commit/fbe7fa3b25b4c887d83927cffb1009ec6cb8ab1e
https://huntr.dev/bounties/fa741f95-b53c-4ed7-b157-e32c5145164c
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FV7XL3CY3K3K5ER3ASMEQA546MIQQ7QM/
Related Vulnerabilities
CVE-2021-21368 Vulnerability in maven package org.webjars.npm:msgpack5
CVE-2017-18355 Vulnerability in npm package rendertron-middleware
CVE-2022-29161 Vulnerability in maven package org.xwiki.platform:xwiki-platform-crypto
CVE-2022-25916 Vulnerability in npm package mt7688-wiscan
CVE-2010-2076 Vulnerability in maven package org.apache.cxf:cxf-bundle