Secunia Advisory SA30782WebGUI Collaboration RSS Feed Information Disclosure
|
||||||||||||||||||||||||||||||||||||||||||||||||||||
Description
A security issue has been reported in WebGUI, which can be exploited by malicious people to disclose potentially sensitive information. The problem is caused due to missing authentication checks when viewing Collaboration System RSS feeds. This can be exploited to disclose sensitive data via the RSS feed of e.g. a restricted Collaboration System. The security issue is reported in versions prior to 7.5.13 (beta). Solution Provided and/or discovered by Deep Links Do you have additional information related to this advisory?Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com
|
||||||||||||||||||||||||||||||||||||||||||||||||||||
194 views | ![]() |
| Limny Multiple Vulnerabilities | |
281 views | ![]() |
| Ubuntu update for thunderbird | |
208 views | ![]() |
| Debian update for php5 | |