Security Advisory

CVE-2020-27665

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-10-22 18:19:31
Last updated 2024-08-04 16:18:45
Assigner mitre
State PUBLISHED

Description

In Strapi before 3.2.5, there is no admin::hasPermissions restriction for CTB (aka content-type-builder) routes.

← Browse all CVEs View on cve.org ↗