What the vulnerability does
01Description
Missing Authorization vulnerability in contentstudio Contentstudio contentstudio allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Contentstudio: from n/a through <= 1.3.7.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
What the vulnerability does
Missing Authorization vulnerability in contentstudio Contentstudio contentstudio allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Contentstudio: from n/a through <= 1.3.7.
Explanation of Vulnerability in Simple Terms
Contentstudio versions up to 1.3.7 lack proper authorization checks, allowing unauthenticated attackers to modify data via network requests. The vulnerability requires no user interaction and affects the integrity of stored information. Update to version 1.4.1 or later to remediate.
What an attacker can do
Modify data in Contentstudio without authentication.
Potential impact on your site
Unauthorized users can alter content or settings, potentially corrupting your site's data.
Conditions required to exploit
Network access to the Contentstudio instance; no authentication required.
Key dates
External resources