GHSA-2237-5r9w-vm8j: Connect-CMS information that is restricted to viewing is visible

GHSA-5rjc-jc28-cwgg: Connect-CMS Access control vulnerability

GHSA-432c-wxpg-m4q3: xml2rfc has file inclusion irregularities

GHSA-vj7w-3m8c-6vpx: SFTPGo has insufficient sanitization of user provided rsync command

GHSA-vr5f-php7-rg24: Pimcore Admin Classic Bundle allows user enumeration

The "Create a Space" feature in Silverpeas Core 6.3.1 is reserved for use by administrators. This function suffers from broken access control, allowing any authenticated user to create a space by navigating to the correct URL.

**Broken access control in Silverpeas**

Moderate severity GitHub Reviewed Published Dec 13, 2023 to the GitHub Advisory Database • Updated Dec 13, 2023

Headline

GHSA-vpp3-hpcm-v944: Broken access control in Silverpeas

ghsa: Latest News