0.001 Low
EPSS
Percentile
35.2%
payload is vulnerable to Information Disclosure. An attacker can access hidden fields on readable collections they don’t have authorization for via a brute force attack.
github.com/payloadcms/payload/commit/81d69d1b64484afd45601f79f176d683c9954a70
github.com/payloadcms/payload/pull/2487
github.com/payloadcms/payload/releases/tag/v1.7.0
github.com/payloadcms/payload/security/advisories/GHSA-35jj-vqcf-f2jf