### [CVE-2022-3065](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3065)
![](https://img.shields.io/static/v1?label=Product&message=jgraph%2Fdrawio&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2020.2.8%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-284%20Improper%20Access%20Control&color=brighgreen)

### Description

Improper Access Control in GitHub repository jgraph/drawio prior to 20.2.8.

### POC

#### Reference
- https://huntr.dev/bounties/5f3bc4b6-1d53-46b7-a23d-70f5faaf0c76
- https://huntr.dev/bounties/5f3bc4b6-1d53-46b7-a23d-70f5faaf0c76

#### Github
No PoCs found on GitHub currently.