Количество 2
Количество 2
CVE-2024-48925
Umbraco, a free and open source .NET content management system, has an improper access control issue starting in version 14.0.0 and prior to version 14.3.0. The issue allows low-privilege users to access the webhook API and retrieve information that should be restricted to users with access to the settings section. Version 14.3.0 contains a patch.
GHSA-4gp9-ff99-j6vj
Umbraco CMS Improper Access Control Vulnerability Allows Low-Privilege Users to Access Webhook API
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-48925 Umbraco, a free and open source .NET content management system, has an improper access control issue starting in version 14.0.0 and prior to version 14.3.0. The issue allows low-privilege users to access the webhook API and retrieve information that should be restricted to users with access to the settings section. Version 14.3.0 contains a patch. | 0% Низкий | больше 1 года назад | |
| GHSA-4gp9-ff99-j6vj Umbraco CMS Improper Access Control Vulnerability Allows Low-Privilege Users to Access Webhook API | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу