VWE-2020-5782 Printable Version

https://www.vaultwiki.org/pages/Book/Documentation/VWE-2020-5782
This page is a chapter in Info Known Vulnerabilities

This page has been seen 173,805 times.

    • Created by on
Common NameNone
VWE-IDVWE-2020-5782
Related ReportNone
SeverityMEDIUM
Exploit DifficultyNORMAL
PlatformAffects all platforms supported by the vulnerable versions.
DescriptionPermissions Escalation. A user can change a book's chapter order even though their edits require moderation, as long as the user has permission to manage the book's categories. Does not affect Lite versions.
DiscoveredApril 7, 2020
ResolvedMay 7, 2020
Patches Available4.1.0 RC 2 Patch Level 2
4.1.0 RC 1 Patch Level 3
4.0.28 Patch Level 3
4.0.27 Patch Level 6
4.0.26 Patch Level 8
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.