Access Control Vulnerability in LibrePhotos by LibrePhotos

CVE-2023-22903

What is CVE-2023-22903?

An access control vulnerability exists in LibrePhotos prior to version e19e539, located in the api/views/user.py file. This issue can result in unauthorized access to user data, potentially allowing attackers to manipulate or extract sensitive information without appropriate permissions. Users are advised to upgrade to the latest version to mitigate this security risk.

References