Exploit for Cleartext Storage of Sensitive Information in Strapi

It is an exploit module for Apache HTTP Server. The target produ...

CVE-2022-30617

An authenticated user with access to the Strapi admin panel can view private and sensitive data, such as email and password reset tokens, for other admin panel users that have a relationship e.g., created by, updated by with content accessible to the authenticated user. For example, a...