ApostropheCMS Information Disclosure: Leaking viewPermission-protected fields via MongoDB distinct projection bypass
Referenced CVEs: CVE-2026-39857 CVE-2026-33888
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.