RSS   Vulnerabilities for 'Coral talk'   RSS

2021-06-30
 
CVE-2021-35970

CWE-732
 

 
Talk 4 in Coral before 4.12.1 allows remote attackers to discover e-mail addresses and other sensitive information via GraphQL because permission checks use an incorrect data type.

 


Copyright 2021, cxsecurity.com

 

Back to Top