CVE-2022-1881
CVE-2022-1881 affects Octopus Server, with an Insecure Direct Object Reference vulnerability that lets a user download Project Exports from a project they don’t have permission to access, limited to projects in the same Space. Practical impact is potential exposure of export data. Remediation gui...