PT-2024-22688 · Umbraco · Umbraco
0Xryuzak1
·
Published
2024-04-17
·
Updated
2026-04-21
·
CVE-2024-29035
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Umbraco versions 13.0.0 through 13.1.0
Description
The issue concerns the availability of failing webhooks logs when the solution is not in debug mode, potentially containing critical information.
Recommendations
For Umbraco versions 13.0.0 through 13.1.0, update to version 13.1.1 to resolve the issue.
As a temporary workaround, consider disabling the webhooks functionality until a patch is available.
Exploit
Fix
DoS
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Umbraco