Disclosure Date 2021/03/07

CVE-2021-20670

Improper Access Control leading to Information Leakage in GROWI

GROWI におけるアクセス制限の不備

Description

Improper access control of files allows an unauthenticated remote attacker to read the user's personal information and/or server's internal information