GHSA-c2pw-6vg9-w3rmLowCVSS 2.7

Authorization Bypass Through User-Controlled Key vulnerability in Cozmoslabs User Profile Picture...

Published
July 13, 2026
Last Modified
July 13, 2026

🔗 CVE IDs covered (1)

📋 Description

Authorization Bypass Through User-Controlled Key vulnerability in Cozmoslabs User Profile Picture metronet-profile-picture allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Profile Picture: from n/a through <= 2.6.3.

🔗 References (3)