Description
The InputFilter::getInstance() method omitted a security sensitive parameter from the instance cache key.
Remediation
References
Related Vulnerabilities
WordPress Plugin Theme Editor Arbitrary File Download (2.5)
Dot CMS Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-11466)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3667)
Dotclear Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-53952)