mautic/core is vulnerable to information disclosure. The vulnerability exists as the tracking cookies per contact is systematically incremented by their auto-incremented ID, and it is possible to retrieve information about the contact through forms by progressive profiling.
CPE | Name | Operator | Version |
---|---|---|---|
mautic/core | le | 2.12.2 | |
mautic/core | le | 2.12.2 |