2 matches found
Unauthorized Access To Unpublished Page Previews
mautic/core is vulnerable to Unauthorized Access to unpublished page previews. The vulnerability is due to missing authorization checks on predictable preview URLs, allowing unauthenticated users and search engines to access and index draft content...
CVE-2025-5257
The CVE-2025-5257 entry concerns Mautic’s unpublished page previews. The vulnerability arises from missing authorization checks on page preview URLs (for example, /page/preview/1, /page/preview/2), allowing unauthenticated users to access content not yet intended for public release and enabling s...