Description
Any Editor could delete any snapshot, even if they have no access to read or write them.
Remediation
References
Related Vulnerabilities
Magento CVE-2019-8230 Vulnerability (CVE-2019-8230)
MediaWiki Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2020-35625)
Apache HTTP Server Use After Free Vulnerability (CVE-2019-0211)
MySQL CVE-2022-21307 Vulnerability (CVE-2022-21307)
WordPress Plugin Events Shortcodes For The Events Calendar Security Bypass (1.9.4)