2018-04-07 21:00:00
mitre
PUBLISHED
Etherpad 1.5.x and 1.6.x before 1.6.4 allows an attacker to export all the existing pads of an instance without knowledge of pad names.