Description
In Crafter CMS Crafter Studio 3.0.1 an IDOR vulnerability exists which allows unauthenticated attackers to view and modify administrative data.
Remediation
References
http://crafter.com
https://docs.craftercms.org/en/3.0/security/advisory.html
Related Vulnerabilities
CVE-2018-1000865 Vulnerability in maven package org.kohsuke:groovy-sandbox
CVE-2020-15168 Vulnerability in maven package org.webjars.npm:node-fetch
CVE-2020-1695 Vulnerability in maven package org.jboss.resteasy:resteasy-jaxrs-all
CVE-2020-2202 Vulnerability in maven package org.jenkins-ci.plugins:fortify-on-demand-uploader
CVE-2020-8913 Vulnerability in maven package com.google.android.play:core