An issue was discovered in Serpico (aka SimplE RePort wrIting and CollaboratiOn tool) 1.3.0. The Add Collaborator allows unlimited data via the author parameter, even if the data does not match anything in the database.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-01-15T22:43:59

Updated: 2024-08-05T02:32:08.912Z

Reserved: 2019-12-17T00:00:00

Link: CVE-2019-19859

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-01-15T23:15:11.963

Modified: 2024-11-21T04:35:32.897

Link: CVE-2019-19859

cve-icon Redhat

No data.