Description
Installations, where crafter-search is not protected, allow unauthenticated remote attackers to create, view, and delete search indexes.
Remediation
References
https://docs.craftercms.org/en/3.1/security/advisory.html#cv-2021120107
Related Vulnerabilities
CVE-2018-1000009 Vulnerability in maven package org.jvnet.hudson.plugins:checkstyle
CVE-2015-5174 Vulnerability in maven package org.apache.tomcat:tomcat-util
CVE-2016-3089 Vulnerability in maven package org.apache.openmeetings:openmeetings-web
CVE-2019-5448 Vulnerability in maven package org.webjars.npm:yarn
CVE-2019-10427 Vulnerability in maven package org.jenkins-ci.plugins:aqua-microscanner