CVE-2021-32787

Name of the Vulnerable Software and Affected Versions Sourcegraph versions prior to 3.30.0

Description The issue concerns information leaks in the site-admin area, where regular users can access daily usage statistics and code intelligence uploads and indexes, although they cannot alter the information or interact with other features. The problem is resolved in version 3.30.0, where this information is no longer accessible to unprivileged users.

Recommendations For versions prior to 3.30.0, upgrade to version 3.30.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the site-admin area until the upgrade can be applied.