Description
Contao 3.x before 3.5.37, 4.4.x before 4.4.31 and 4.6.x before 4.6.11 has Incorrect Access Control.
Remediation
References
Related Vulnerabilities
WordPress Plugin LearnDash LMS Multiple Information Disclosure Vulnerabilities (4.10.2)
PHP Improper Input Validation Vulnerability (CVE-2017-8923)
Magento Improper Authorization Vulnerability (CVE-2021-21022)
WordPress Plugin WP Portfolio Gallery Cross-Site Scripting (1.0.0)
Ruby Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-10933)