You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi,
Not sure if it is by choice or simply a bug, but generated PDFs are available through front/send.php even when this plugin is disabled. In addition they are also available without user authentication (in particular for guys trying to exploit GHSA-2pjh-h828-wcw9 vulnerability)...
The text was updated successfully, but these errors were encountered:
kabassanov
changed the title
Plugin folder for PDFs available without authentication or when plugin is disabled
Barcodes PDFs available without authentication or when plugin is disabled
Jun 8, 2022
Hi,
Not sure if it is by choice or simply a bug, but generated PDFs are available through front/send.php even when this plugin is disabled. In addition they are also available without user authentication (in particular for guys trying to exploit GHSA-2pjh-h828-wcw9 vulnerability)...
The text was updated successfully, but these errors were encountered: