We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Prior to the patched version, logged in users of Mautic are able to access areas of the application that they should be prevented from accessing. Users could potentially access sensitive data such as names and surnames, company names and stage names.
Reserved 2022-02-22 | Published 2024-09-18 | Updated 2024-09-18 | Assigner MauticCWE-276 Incorrect Default Permissions
infosec-it-init
Lenon Leite
Avikarsha Saha
John Linhart
github.com/...mautic/security/advisories/GHSA-qjx3-2g35-6hv8
Support options