Vulnerabilities > Mealie > Mealie > 0.5.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-08-19 | CVE-2022-34624 | Insufficient Session Expiration vulnerability in Mealie 0.5.5/1.0.0 Mealie1.0.0beta3 does not terminate download tokens after a user logs out, allowing attackers to perform a man-in-the-middle attack via a crafted GET request. | 5.9 |