Description
Separate Groups mode restrictions were not factored into permission checks before allowing viewing or deletion of responses in Feedback activities.
Remediation
References
Related Vulnerabilities
Perl Numeric Errors Vulnerability (CVE-2010-1158)
OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-23839)
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.22)
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1210)
WordPress Plugin Resume Submissions & Job Postings Cross-Site Scripting (2.5.3)