{"id":"CVE-2019-12395","details":"In Webbukkit Dynmap 3.0-beta-3 or below, due to a missing login check in servlet/MapStorageHandler.java, an attacker can see a map image without login even if victim enables login-required in setting.","modified":"2026-04-10T04:15:52.494284Z","published":"2019-05-28T13:29:00.490Z","references":[{"type":"ADVISORY","url":"http://jvn.jp/en/jp/JVN89046645/index.html"},{"type":"REPORT","url":"https://github.com/webbukkit/dynmap/issues/2474"},{"type":"FIX","url":"https://github.com/webbukkit/dynmap/commit/641f142cd3ccdcbfb04eda3059be22dd9ed93783"},{"type":"FIX","url":"https://github.com/webbukkit/dynmap/pull/2475"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/webbukkit/dynmap","events":[{"introduced":"0"},{"fixed":"c59daae6766612315095b7cec2cbdeb3451ebfff"},{"introduced":"0"},{"last_affected":"c6d0d25ae097a612271231e1e9ee7bae764b0361"},{"fixed":"641f142cd3ccdcbfb04eda3059be22dd9ed93783"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"3.0"},{"introduced":"0"},{"last_affected":"3.0-rc3"}]}}],"versions":["0.07","0.08","0.09","0.10","0.11","0.12","0.12.1","0.13","0.14","0.15","0.16","0.17","0.18","0.19","0.20","0.21","0.22","0.25","0.25.1","0.26","0.27","0.28","0.29","0.29.1","0.29.2","0.30","0.30.1","0.31","0.32","0.33","0.34","0.35","0.36","0.36.1","0.36.2","0.36.3","0.37","0.38","0.39","0.40","0.50","0.60","0.70","0.70.1","0.70.2","0.70.3","0.80","0.90","1.0","1.1","1.2","1.3","1.4","1.5","1.7","1.8","1.9.1","1.9.2-alpha-1","1.9.3","1.9.4","2.0.0","2.1","2.1-alpha-1","2.2","2.3","2.4","3.0-beta-1","3.0-beta-10","3.0-beta-2","3.0-beta-3","v2.5","v3.0-RC3","v3.0-alpha-2","v3.0-alpha-3","v3.0-beta-4","v3.0-beta-7","v3.0-beta-8","v3.0-beta-9"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"3.0-alpha1"}]},{"events":[{"introduced":"0"},{"last_affected":"3.0-alpha2"}]},{"events":[{"introduced":"0"},{"last_affected":"3.0-alpha3"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-12395.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}]}