CVE-2026-53769
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.5 / 10
Vulnerability Description
Avo: Direct attachment upload endpoint lacks upload authorization and bypasses field-level upload policy
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
rubygems
Product
avo
Discussion (0)
Add Comment
No comments yet. Be the first!