Skip to content

Improper Cache control allows attacker to view sensitive data

High
marcelfolaron published GHSA-h6w8-27ph-c385 Feb 18, 2025

Package

No package listed

Affected versions

3.1

Patched versions

3.3

Description

Description

Due to improper cache control an attacker can view sensitive information even if he is not logged into the account anymore

Additional Information:

1.The issue was identified during routine security testing.
2.This vulnerability poses a significant risk to user privacy and data security.
3.Urgent action is recommended to mitigate this vulnerability and protect user data from unauthorized access.

Severity

High

CVE ID

No known CVE

Weaknesses

No CWEs

Credits