Querytree
1 CVEs
product
Monthly
Controllers/InvitationsController.cs in QueryTree before 3.0.99-beta mishandles invitations. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Querytree
NVD
GitHub
CVSS 3.1
9.8
EPSS
1.2%
EPSS 1%
CVSS 9.8
CRITICAL
PATCH
Act Now
Controllers/InvitationsController.cs in QueryTree before 3.0.99-beta mishandles invitations. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Querytree
NVD
GitHub