Description
When access to the "admin" folder is not protected by some external authorization mechanisms e.g. Apache Basic Auth, it is possible for any user to download protected information like exam answers.
Remediation
References
Related Vulnerabilities
WordPress Plugin Bulk Creator Cross-Site Scripting (1.0.1)
WordPress 6.3.x Multiple Vulnerabilities (6.3 - 6.3.2)
Drupal Reliance on Cookies without Validation and Integrity Checking Vulnerability (CVE-2022-29248)
Joomla! Core 4.x.x Cross-Site Scripting (4.0.0 - 4.2.4)
WordPress Plugin ULTIMATE VIDEO GALLERY Cross-Site Scripting (1.4)