What the vulnerability does
01Description
Missing Authorization vulnerability in hogash KALLYAS kallyas.This issue affects KALLYAS: from n/a through <= 4.22.0.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
What the vulnerability does
Missing Authorization vulnerability in hogash KALLYAS kallyas.This issue affects KALLYAS: from n/a through <= 4.22.0.
Explanation of Vulnerability in Simple Terms
KALLYAS versions up to 4.22.0 lack proper authorization checks, allowing unauthenticated attackers to modify data on the site. An attacker can send network requests without credentials to alter content or settings. No user interaction is required. The vulnerability affects data integrity but not confidentiality or availability.
What an attacker can do
Modify site data or settings without authentication.
Potential impact on your site
Unauthorized changes to site content, settings, or data by remote attackers.
Conditions required to exploit
Network access only; no authentication or user interaction required.
Key dates
External resources