Improper Restriction of Rendered UI Layers or Frames in yourls · CVE-2021-3734 · GitHub Advisory Database · GitHub

Improper Restriction of Rendered UI Layers or Frames in yourls

Moderate severity GitHub Reviewed Published Aug 30, 2021 to the GitHub Advisory Database • Updated Feb 1, 2023

Package

yourls/yourls (Composer)

Affected versions

<= 1.8.1

Patched versions

None

Description

yourls is vulnerable to Improper Restriction of Rendered UI Layers or Frames

References

Published by the National Vulnerability Database

Aug 26, 2021

Reviewed Aug 27, 2021

Published to the GitHub Advisory Database Aug 30, 2021

Last updated Feb 1, 2023

Severity

Moderate

6.5

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

None

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N