CVE-2018-20028
The CVE-2018-20028 vulnerability affects Contao: 3.x before 3.5.37, 4.4.x before 4.4.31, and 4.6.x before 4.6.11 suffer from Incorrect Access Control that enables viewing records not authorized for the logged-in back end user. The issue allows unauthorized users to view records (e.g., pages, arti...