Umbraco is an open source content management system (CMS) based on ASP.NET technology. An improper access control vulnerability exists in Editors/LogViewerController.cs in Umbraco 8.9.1 and earlier versions. Users without the Applications.Settings access privilege can exploit the vulnerability to access the Logviewer endpoint. No detailed vulnerability details are currently available.
CPE | Name | Operator | Version |
---|---|---|---|
umbraco umbraco | le | 8.9.1 |