Description
Installations, where crafter-search is not protected, allow unauthenticated remote attackers to create, view, and delete search indexes.
Remediation
References
https://docs.craftercms.org/en/3.1/security/advisory.html#cv-2021120107
Related Vulnerabilities
CVE-2014-3623 Vulnerability in maven package org.apache.ws.security:wss4j
CVE-2023-35925 Vulnerability in maven package com.fastasyncworldedit:fastasyncworldedit-core
CVE-2023-3348 Vulnerability in npm package wrangler
CVE-2022-36905 Vulnerability in maven package eu.markov.jenkins.plugin.mvnmeta:maven-metadata-plugin
CVE-2017-1000502 Vulnerability in maven package org.jenkins-ci.plugins:ec2