Description
Installations, where crafter-search is not protected, allow unauthenticated remote attackers to create, view, and delete search indexes.
Remediation
References
https://docs.craftercms.org/en/3.1/security/advisory.html#cv-2021120107
Related Vulnerabilities
CVE-2022-36100 Vulnerability in maven package org.xwiki.platform:xwiki-platform-tag-ui
CVE-2022-42890 Vulnerability in maven package org.apache.xmlgraphics:batik-script
CVE-2014-3530 Vulnerability in maven package org.picketlink:picketlink-common
CVE-2023-50775 Vulnerability in maven package org.jenkins-ci.plugins:ec2-deployment-dashboard
CVE-2022-29258 Vulnerability in maven package org.xwiki.platform:xwiki-platform-filter-ui