CVE-2019-14537
YOURLS through 1.7.3 is affected by a type juggling vulnerability in the api component that can result in login bypass.
| Software | From | Fixed in |
|---|---|---|
yourls / yourls
|
- | 1.7.3.x |
|
yourls / yourls
|
- | 1.7.4 |
- https://github.com/Wocanilo/CVE-2019-14537
- https://github.com/YOURLS/YOURLS/commits/master
- https://github.com/YOURLS/YOURLS/pull/2542
- https://github.com/YOURLS/YOURLS/releases
- https://github.com/YOURLS/YOURLS/security/advisories/GHSA-vf23-f26f-mjj9
- https://security-garage.com/index.php/cves/cve-2019-14537-api-authentication-bypass-via-type-juggling
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime