{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-27T22:48:22.893","vulnerabilities":[{"cve":{"id":"CVE-2018-16704","sourceIdentifier":"cve@mitre.org","published":"2018-09-07T17:29:01.143","lastModified":"2024-11-21T03:53:11.563","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An issue was discovered in Gleez CMS v1.2.0. Because of an Insecure Direct Object Reference vulnerability, it is possible for attackers (logged in users) to view profile page of other users, as demonstrated by navigating to user/3 on demo.gleezcms.org."},{"lang":"es","value":"Se ha descubierto un problema en Gleez CMS v1.2.0. Debido a una vulnerabilidad de referencia insegura directa a objetos, es posible que los atacantes (usuarios que han iniciado sesión) vean la página de perfil de otros usuarios. Esto queda demostrado navegando hasta user/3 en demo.gleezcms.org."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-639"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gleeztech:gleezcms:1.3.0:*:*:*:*:*:*:*","matchCriteriaId":"00E1B518-819A-4A38-ACCE-4953C288121D"}]}]}],"references":[{"url":"https://github.com/gleez/cms/issues/801","source":"cve@mitre.org","tags":["Mitigation","Third Party Advisory"]},{"url":"https://github.com/gleez/cms/issues/801","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Mitigation","Third Party Advisory"]}]}}]}