VWE-2018-4630 Viewing Source [template]Vulnerability | cve= | aka= | severity=Low | difficulty=Easy | description=Permissions Escalation. If a user has permission to view a wiki node, that user can view an RSS feed which contains a list of its contents, even though the user does not have permission to view a list of the node's contents. | lite= | discover-date=August 22, 2018 | patch-date=August 27, 2018 | patches= 4.0.23 Patch Level 2 4.0.22 Patch Level 4 4.0.21 Patch Level 5 4.0.20 Patch Level 8 4.0.19 Patch Level 11 | workaround=In Settings > VaultWiki: Miscellaneous, set Enable External Feeds = No. [/template] 607 characters