CVE-2015-1613

2015-02-16T15:59:00
ID CVE-2015-1613
Type cve
Reporter cve@mitre.org
Modified 2015-02-17T17:13:00

Description

RhodeCode before 2.2.7 allows remote authenticated users to obtain API keys and other sensitive information via the (1) update_repo, (2) get_locks, or (3) get_user_groups API method.