CVE-2017-1000490

Published: 2018-01-03T17:29Z

Last Modified: 2024-11-21T03:04Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Mautic versions 1.0.0 - 2.11.0 are vulnerable to allowing any authorized Mautic user session (must be logged into Mautic) to use the Filemanager to download any file from the server that the web user has access to. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt