Skip to content

Permission issues for redirects, website settings and asset meta-data

Moderate
brusch published GHSA-7p8p-4253-3mg6 Nov 30, 2020

Package

No package listed

Affected versions

< 6.8.5

Patched versions

6.8.5

Description

It is possible to modify & create website settings, redirects and asset metadata without having the appropriate permissions.

Severity

Moderate

CVE ID

CVE-2020-26246

Weaknesses

No CWEs