Published on: Not Yet Published
Last Modified on: 12/08/2022 07:07:00 PM UTC
CVE-2022-44030Source: Mitre Source: NIST CVE.ORG Print: PDF
Certain versions of Redmine from Redmine contain the following vulnerability:
Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due to insufficient permission checks. Depending on the configuration, this may require login as a registered user.
- CVE-2022-44030 has been assigned by [email protected] to track the vulnerability - currently rated as HIGH severity.
CVSS3 Score: 7.5 - HIGH
|Redmine 4.2.9 and 5.0.4 released - Redmine|| www.redmine.org |
|Security Advisories - Redmine|| www.redmine.org |
There are currently no QIDs associated with this CVE
Exploit/POC from Github
Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due to insufficient per…
Known Affected Configurations (CPE V2.3)
No vendor comments have been submitted for this CVE
|@CVEreport||CVE-2022-44030 : Redmine 5.x before 5.0.4 allows downloading of file attachments of any Issue or any Wiki page due… twitter.com/i/web/status/1…||2022-12-06 23:04:27|