ShowDoc/ShowDoc is vulnerable to information disclosure. The library does not properly configure it’s access controls by default, allowing a malicious user to use the page_id
variable in the URL to gain access to sensitive information.
CPE | Name | Operator | Version |
---|---|---|---|
showdoc/showdoc | le | 2.4.0 |