Mealie 1.0.0beta3 exists to contain an Insecure Direct Object Reference (IDOR) vulnerability which allows malicious users to modify user passwords and other attributes via modification of the user_id parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mealie mealie 0.5.5 |
||
mealie mealie 1.0.0 |