CVE-2016-7572

CVE-2016-7572

The system.temporary route in Drupal 8.x before 8.1.10 does not properly check for "Export configuration" permission, which allows remote authenticated users to bypass intended access restrictions and read a full config export via unspecified vectors.

Source: CVE-2016-7572

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다