{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "A Cross-Site Request Forgery (CSRF) in Ferdi through 5.8.1 and Ferdium through 6.0.0-nightly.98 allows attackers to read files via an uploaded file such as a settings/preferences file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-07-17T16:24:10", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://getferdi.com/"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/getferdi/ferdi"}, {"tags": ["x_refsource_MISC"], "url": "https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2022-32320", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A Cross-Site Request Forgery (CSRF) in Ferdi through 5.8.1 and Ferdium through 6.0.0-nightly.98 allows attackers to read files via an uploaded file such as a settings/preferences file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://getferdi.com/", "refsource": "MISC", "url": "https://getferdi.com/"}, {"name": "https://github.com/getferdi/ferdi", "refsource": "MISC", "url": "https://github.com/getferdi/ferdi"}, {"name": "https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c", "refsource": "MISC", "url": "https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T07:39:50.890Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://getferdi.com/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/getferdi/ferdi"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2022-32320", "datePublished": "2022-07-17T16:24:10", "dateReserved": "2022-06-05T00:00:00", "dateUpdated": "2024-08-03T07:39:50.890Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:-:*:*:*:*:*:*", "matchCriteriaId": "BD953D31-DD80-4ED8-A142-A61473C62442", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:beta1:*:*:*:*:*:*", "matchCriteriaId": "3D1F4F65-F098-4903-979F-C4559DC3C00E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:beta2:*:*:*:*:*:*", "matchCriteriaId": "ABAE6347-ADB6-47C8-B3C0-87F4D30FBDE1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:beta3:*:*:*:*:*:*", "matchCriteriaId": "0B66863E-B4CA-43A4-AE4B-AAD8AD33A83C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly1:*:*:*:*:*:*", "matchCriteriaId": "BADE1A68-D2FE-433E-91E3-60A991AD6FB2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly10:*:*:*:*:*:*", "matchCriteriaId": "4923CEDA-FFF8-48BA-9CD0-CCFB201D65AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly11:*:*:*:*:*:*", "matchCriteriaId": "FFDE2E25-21EE-49D6-B6F9-6B4EEB9E5F73", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly12:*:*:*:*:*:*", "matchCriteriaId": "61CBD365-CB95-4FAA-872A-550F9ECFE172", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly13:*:*:*:*:*:*", "matchCriteriaId": "66CAB0E5-7687-480C-993D-261C1A519D89", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly14:*:*:*:*:*:*", "matchCriteriaId": "1C572FCA-936D-4956-8475-F9EF8A4D75CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly15:*:*:*:*:*:*", "matchCriteriaId": "7315EF9F-3575-460C-813A-83D27EB5D375", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly16:*:*:*:*:*:*", "matchCriteriaId": "AE0FA9FD-54B9-4072-B82C-70B1A6E893C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly17:*:*:*:*:*:*", "matchCriteriaId": "9015999F-A8B5-4003-9307-3A299277B684", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly18:*:*:*:*:*:*", "matchCriteriaId": "A4127DB7-5336-464F-A2C5-760966649E52", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly19:*:*:*:*:*:*", "matchCriteriaId": "D735F091-A953-446F-80AE-0FD248E66CF1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly2:*:*:*:*:*:*", "matchCriteriaId": "8437DB24-F418-40FB-9157-329B6405DAF3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly20:*:*:*:*:*:*", "matchCriteriaId": "1449DC1E-7ECF-43A0-9ACE-8955FAB98326", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly21:*:*:*:*:*:*", "matchCriteriaId": "37C329FB-A93B-41DF-B219-B28F24507C97", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly22:*:*:*:*:*:*", "matchCriteriaId": "8C70D159-DA98-44F5-B6FA-135D8953E1CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly23:*:*:*:*:*:*", "matchCriteriaId": "03BDA207-974D-47A4-88C8-F001FD0CB0C1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly24:*:*:*:*:*:*", "matchCriteriaId": "90D72083-A105-4A8A-8E05-AEB19E25C663", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly25:*:*:*:*:*:*", "matchCriteriaId": "31A53350-13C5-4DDA-BB21-B83D1FB61F95", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly26:*:*:*:*:*:*", "matchCriteriaId": "6304D018-BA86-4951-9026-1F27380AE264", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly27:*:*:*:*:*:*", "matchCriteriaId": "5889C356-11C7-4123-901A-7B05DD46BDB8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly28:*:*:*:*:*:*", "matchCriteriaId": "5F6B5479-EAD9-4311-9D2A-B71AF87F62BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly29:*:*:*:*:*:*", "matchCriteriaId": "5BBCDB5C-A54D-4209-BF98-19E265EEBD64", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly3:*:*:*:*:*:*", "matchCriteriaId": "1E2C1C86-2C0D-4530-BD1D-BEF315B97D80", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly30:*:*:*:*:*:*", "matchCriteriaId": "76AC55F9-D749-4154-A05B-9F35BDD3D093", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly31:*:*:*:*:*:*", "matchCriteriaId": "A62E7E8A-C2C5-4252-AE40-11283C5757DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly32:*:*:*:*:*:*", "matchCriteriaId": "72685EB6-65F8-4804-B242-8463340E6D1F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly33:*:*:*:*:*:*", "matchCriteriaId": "D0493140-9ACE-4970-AC3F-5A4F4DE5745C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly34:*:*:*:*:*:*", "matchCriteriaId": "8E46F575-ECD6-4776-9EFD-751A6BB157FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly35:*:*:*:*:*:*", "matchCriteriaId": "0DA01498-0E0C-4639-B17B-985ABFE1D059", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly36:*:*:*:*:*:*", "matchCriteriaId": "F09592F9-1141-44FE-AD58-3BC772262A10", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly37:*:*:*:*:*:*", "matchCriteriaId": "BFE5718E-D5B6-4302-ABA2-E23EBB175470", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly38:*:*:*:*:*:*", "matchCriteriaId": "F03A9BFE-A551-4749-9969-066A11CFA3D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly39:*:*:*:*:*:*", "matchCriteriaId": "2AD4C5A1-B21A-416E-B111-64E6163692DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly4:*:*:*:*:*:*", "matchCriteriaId": "BF7548DC-6134-4C7F-AAE0-8CC1AF489303", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly40:*:*:*:*:*:*", "matchCriteriaId": "FB67BAD3-3092-4195-AD34-C648EFA1B2B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly41:*:*:*:*:*:*", "matchCriteriaId": "22341934-4D22-4ED2-B99F-6EAA5BDE9D22", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly42:*:*:*:*:*:*", "matchCriteriaId": "E0B86CE4-8792-4442-84E7-0741F7C593E6", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly43:*:*:*:*:*:*", "matchCriteriaId": "71B6AC59-8F95-47C4-9D0F-AAD820A6CE50", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly44:*:*:*:*:*:*", "matchCriteriaId": "FC01CC79-BF42-441B-B5A1-FD8A0451B83F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly45:*:*:*:*:*:*", "matchCriteriaId": "D8021E36-63A5-4E48-B247-59EE58E5A225", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly46:*:*:*:*:*:*", "matchCriteriaId": "6D5E13BB-EE1A-43D5-A750-8AB3250B143C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly47:*:*:*:*:*:*", "matchCriteriaId": "02A4266C-58B7-411F-BA92-0D62D078B352", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly48:*:*:*:*:*:*", "matchCriteriaId": "EC147712-BCF9-4D2D-820B-2CE41DDA0469", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly49:*:*:*:*:*:*", "matchCriteriaId": "F5E0630A-EF5D-4A82-B692-FE6FA4B9D348", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly5:*:*:*:*:*:*", "matchCriteriaId": "887D31F2-DCEF-46A2-A126-10BB2A95BC10", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly50:*:*:*:*:*:*", "matchCriteriaId": "9164DC4B-DDB1-4AE5-AEF4-D309A2826C4E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly51:*:*:*:*:*:*", "matchCriteriaId": "B5537D44-46CC-491A-A5EE-8E7A4150A1CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly52:*:*:*:*:*:*", "matchCriteriaId": "BE08932B-0C44-4B0B-956D-82FDE53FFD3E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly53:*:*:*:*:*:*", "matchCriteriaId": "9F5B1AAA-97BD-44B5-BFBB-12052A5706B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly54:*:*:*:*:*:*", "matchCriteriaId": "F1E275EF-8533-429D-996C-B5B98734CD09", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly55:*:*:*:*:*:*", "matchCriteriaId": "E8F57FC1-B090-4A91-BD5A-1DA9A7CB792C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly56:*:*:*:*:*:*", "matchCriteriaId": "7230A284-5BDC-408F-9C5C-344BB1A0F215", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly57:*:*:*:*:*:*", "matchCriteriaId": "33AF4A27-11A3-430A-8FE7-285D26CD6101", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly58:*:*:*:*:*:*", "matchCriteriaId": "244A3E2E-56FC-418B-A6D8-8A2C41FC78B7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly59:*:*:*:*:*:*", "matchCriteriaId": "8E9DE10F-6AD0-4766-8E89-C03C796AD0B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly6:*:*:*:*:*:*", "matchCriteriaId": "2759F81F-679A-471E-8E02-4CB6ACB9C0F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly60:*:*:*:*:*:*", "matchCriteriaId": "0896BDC5-5EB2-452D-B748-A28D0344176E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly61:*:*:*:*:*:*", "matchCriteriaId": "76FF50CB-10F5-4532-BF6E-4C2C411B5E93", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly62:*:*:*:*:*:*", "matchCriteriaId": "235087F4-7D7F-4755-94B2-BBC578236180", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly63:*:*:*:*:*:*", "matchCriteriaId": "0D33231C-1DB2-43B9-A626-D5157C83E8D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly65:*:*:*:*:*:*", "matchCriteriaId": "F6CCC963-F7F4-4556-9BDB-6C80B9031764", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly66:*:*:*:*:*:*", "matchCriteriaId": "90B7FA3E-8A04-41D0-B732-8CCEF340C6BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly67:*:*:*:*:*:*", "matchCriteriaId": "A6AE7C68-251B-4894-92BC-DD1EE3930524", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly69:*:*:*:*:*:*", "matchCriteriaId": "78FE624A-24B1-480E-8547-5B425A9DC766", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly7:*:*:*:*:*:*", "matchCriteriaId": "6487A95E-FB08-4412-BFF4-94F7452B6A05", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly70:*:*:*:*:*:*", "matchCriteriaId": "E55BB281-5F43-493A-BC4E-9AE22A614A37", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly71:*:*:*:*:*:*", "matchCriteriaId": "B38B65F2-D254-4464-BDAA-DCE12457BC89", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly72:*:*:*:*:*:*", "matchCriteriaId": "9A0B0E32-7F42-431C-92BE-28FBB1638747", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly73:*:*:*:*:*:*", "matchCriteriaId": "49367432-3C81-4EE4-AC46-131197E038D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly74:*:*:*:*:*:*", "matchCriteriaId": "F7EDE374-F6F2-45F4-A84B-E18CFC1046D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly76:*:*:*:*:*:*", "matchCriteriaId": "172EF3B3-380A-4F27-A710-2531401EBEEA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly77:*:*:*:*:*:*", "matchCriteriaId": "59B40A3B-7E63-4F0D-9411-BA9C3445B3BB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly78:*:*:*:*:*:*", "matchCriteriaId": "488DF7CD-9504-4D47-983B-3E93EE98902D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly79:*:*:*:*:*:*", "matchCriteriaId": "856544BE-0D71-45C2-9BB5-C6350D76F8BE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly8:*:*:*:*:*:*", "matchCriteriaId": "2318F570-B637-4FE1-9331-7AE65DB4BFC8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly80:*:*:*:*:*:*", "matchCriteriaId": "F7B85E44-136C-4D23-ABD1-97BE938C9858", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly81:*:*:*:*:*:*", "matchCriteriaId": "48099DC2-1FC3-4001-903D-4F215929115B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly82:*:*:*:*:*:*", "matchCriteriaId": "681B9A2D-8E3B-4D07-9C48-2471CE773715", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly83:*:*:*:*:*:*", "matchCriteriaId": "5AC9D7FF-A38B-4534-88A4-4895D6DB9712", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly84:*:*:*:*:*:*", "matchCriteriaId": "B7D5FA42-9DB3-4F3D-8E1E-75D46736A36A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly85:*:*:*:*:*:*", "matchCriteriaId": "09D9D57D-1F12-42EB-AAD7-87EE9BEA84A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly86:*:*:*:*:*:*", "matchCriteriaId": "DE6E0A68-D153-424B-B865-42816F5F3B1F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly87:*:*:*:*:*:*", "matchCriteriaId": "2722D65E-A195-47E0-A938-9C9D23F4AAB0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly88:*:*:*:*:*:*", "matchCriteriaId": "46F2C80F-ED94-4BE1-917F-EA4694BB5CC7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly89:*:*:*:*:*:*", "matchCriteriaId": "39506F16-F3FA-4779-A3CF-8C41B190E353", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly9:*:*:*:*:*:*", "matchCriteriaId": "9D2DC82F-764B-448F-BCB4-D1A646D001AC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly90:*:*:*:*:*:*", "matchCriteriaId": "E6CF2F78-7B72-432D-BBF8-E47B89C64BE7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly91:*:*:*:*:*:*", "matchCriteriaId": "53C81FC1-1483-40EF-8057-295A5C3029C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly92:*:*:*:*:*:*", "matchCriteriaId": "D0081A08-F134-467B-ABF8-FB3DE1157FC7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly93:*:*:*:*:*:*", "matchCriteriaId": "40375634-96E6-411A-9DF6-DA4B4AD326DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly94:*:*:*:*:*:*", "matchCriteriaId": "F045C529-9AA6-4E5D-B5F1-4C173DBB0001", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly95:*:*:*:*:*:*", "matchCriteriaId": "404E388D-1AA1-4196-85E5-A070C92558E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly96:*:*:*:*:*:*", "matchCriteriaId": "1E6993A8-70E0-4229-A07D-C11B32B20C7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly97:*:*:*:*:*:*", "matchCriteriaId": "45C9C8DD-25B9-4094-BB71-C9D8C5B8AA5C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ferdium:ferdium:6.0.0:nightly98:*:*:*:*:*:*", "matchCriteriaId": "35F5E88F-376B-4E14-87E0-1A58767D37E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:getferdi:ferdi:*:*:*:*:*:*:*:*", "matchCriteriaId": "06ED59A0-58C2-4F6B-8D14-C0F6C0A5E301", "versionEndIncluding": "5.8.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A Cross-Site Request Forgery (CSRF) in Ferdi through 5.8.1 and Ferdium through 6.0.0-nightly.98 allows attackers to read files via an uploaded file such as a settings/preferences file."}, {"lang": "es", "value": "Una vulnerabilidad de tipo Cross-Site Request Forgery (CSRF) en Ferdi versiones hasta 5.8.1 y Ferdium versiones hasta 6.0.0-nightly.98, permite a atacantes leer archivos por medio de un archivo cargado, como un archivo de configuraci\u00f3n/preferencias"}], "id": "CVE-2022-32320", "lastModified": "2022-07-25T19:04:08.357", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-07-17T17:15:08.180", "references": [{"source": "cve@mitre.org", "tags": ["Product"], "url": "https://getferdi.com/"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://gist.github.com/omriinbar-cyesec/c1179fe99725d2b828b6573c0d110c9c"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/getferdi/ferdi"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}