Security Advisory

CVE-2017-1000490

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-01-03 17:00:00

Last updated 2024-09-16 16:47:37

Assigner mitre

State PUBLISHED

Description

Mautic versions 1.0.0 - 2.11.0 are vulnerable to allowing any authorized Mautic user session (must be logged into Mautic) to use the Filemanager to download any file from the server that the web user has access to.

← Browse all CVEs View on cve.org ↗