CVE-2020-29454: Incorrect Authorization
(updated )
Editors/LogViewerController.cs
in Umbraco allows a user to visit a logviewer endpoint even if they lack Applications.Settings
access.
References
Detect and mitigate CVE-2020-29454 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →