CVE-2023-47325
Summary
Silverpeas Core 6.3.1 administrative "Bin" feature is affected by broken access control. A user with low privileges is able to navigate directly to the bin, revealing all deleted spaces. The user can then restore or permanently delete the spaces.
- LOW
- NETWORK
- LOW
- UNCHANGED
- NONE
- LOW
- LOW
- NONE
References
Advisory Timeline
- Published