SonarQube 安全漏洞
SonarQube is a code inspection tool from Sonar Open Source. A security vulnerability exists in SonarQube versions prior to 25.6, 2025.3 Commercial, and 2025.1.3 LTA, which stems from a low-privileged user being able to query the /api/v2/users-management/users endpoint, which could lead to obtaini...