What the vulnerability does
01Description
Improper Authorization in GitHub repository wallabag/wallabag prior to 2.5.4.
CVSS base score
7.3/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Key dates
02Disclosure timeline
March 5, 2023
CVE published
March 6, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-5175 erdogant pypickle pypickle.py save improper authorization
CVE-2026-39901 monetr: Protected Transactions Deletable via PUT
CVE-2019-1603 Cisco NX-OS Software Privilege Escalation Vulnerability
CVE-2021-42332 ShinHer Information Co., LTD. ShinHer StudyOnline System - Improper Authorization-3
CVE-2024-27937 glpi Users emails enumeration
