GHSA-74p6-39f2-23v3

Source

https://github.com/advisories/GHSA-74p6-39f2-23v3

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/04/GHSA-74p6-39f2-23v3/GHSA-74p6-39f2-23v3.json

Aliases

CVE-2024-29035

Published

2024-04-17T18:20:28Z

Modified

2024-04-17T18:41:53.440069Z

Details

Impact

Failing webhooks logs are available when solution is not in debug mode. Those logs can contain information that is critical.

Affected Versions

Umbraco versions 13.0.0 - 13.1.1

Patches

13.1.1

Workarounds

Disabling webhooks functionality.

References

Affected packages

NuGet / Umbraco.Cms.Core

Package

Name: Umbraco.Cms.Core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

13.0.0

Fixed

13.1.1

Affected versions

13.*

13.0.0

13.0.1

13.0.2

13.0.3

13.1.0-rc

13.1.0

NuGet / Umbraco.Cms.Web.BackOffice

Package

Name: Umbraco.Cms.Web.BackOffice

Affected ranges

Type: ECOSYSTEM
Events: Introduced

13.0.0

Fixed

13.1.1

Affected versions

13.*

13.0.0

13.0.1

13.0.2

13.0.3

13.1.0-rc

13.1.0