Share:

CVE-2020-29454 - Umbraco Umbraco CMS

December 2, 2020

Moderate 4.3

Editors/LogViewerController.cs in Umbraco through 8.9.1 allows a user to visit a logviewer endpoint even if they lack Applications.Settings access.

Affected software

Umbraco Umbraco CMS

Reference links

https://github.com/umbraco/Umbraco-CMS/pull/9361

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.