Squiz Matrix CMS 6.20 is vulnerable to an Insecure Direct...
Moderate severity
Unreviewed
Published
Sep 7, 2022
to the GitHub Advisory Database
•
Updated Mar 21, 2024
Description
Published by the National Vulnerability Database
Sep 6, 2022
Published to the GitHub Advisory Database
Sep 7, 2022
Last updated
Mar 21, 2024
Squiz Matrix CMS 6.20 is vulnerable to an Insecure Direct Object Reference caused by failure to correctly validate authorization when submitting a request to change a user's contact details.
References