Hazemeldoc

Name of the Vulnerable Software and Affected Versions: Umbraco versions prior to 10.8.9 Umbraco versions prior to 13.7.1 Description: The issue allows authenticated backoffice users to retrieve or delete content or media held within folders the editor does not have access to, via manipulation of backoffice API URLs. Recommendations: For versions prior to 10.8.9, update to version 10.8.9 or later. For versions prior to 13.7.1, update to version 13.7.1 or later.