Vulnerabilities (CVE)

Filtered by vendor Etherpad Subscribe
Filtered by product Ueberdb
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-22784 1 Etherpad 1 Ueberdb 2024-11-21 5.0 MEDIUM 7.5 HIGH
In Etherpad UeberDB < 0.4.4, due to MySQL omitting trailing spaces on char / varchar columns during comparisons, retrieving database records using UeberDB's MySQL connector could allow bypassing access controls enforced on key names.