Description
Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker to obtain sensitive information via the ConfigVerifyController function of the Tenant Management module.
Remediation
References
https://github.com/opengoofy/hippo4j/issues/1060
Related Vulnerabilities
CVE-2022-24999 Vulnerability in maven package org.webjars.npm:qs
CVE-2023-5572 Vulnerability in npm package @vrite/sdk
CVE-2023-33950 Vulnerability in maven package com.liferay.portal:release.portal.bom
CVE-2023-34238 Vulnerability in npm package gatsby-plugin-mdx
CVE-2020-28277 Vulnerability in maven package org.webjars.npm:dset