Johnax0

**Name of the Vulnerable Software and Affected Versions** Craft versions 3.x prior to 3.9.6 Craft versions 4.x prior to 4.4.16 **Description** This is a potential moderate impact, low complexity privilege escalation issue in Craft with certain user permissions setups. The issue has been fixed in Craft 4.4.16 and Craft 3.9.6. **Recommendations** For Craft versions 3.x prior to 3.9.6, update to at least version 3.9.6 to resolve the issue. For Craft versions 4.x prior to 4.4.16, update to at least version 4.4.16 to resolve the issue.