Vulnerability	Vulnerable Version
H Authorization Bypass Through User-Controlled Key papermerge-core is an Open source document management system designed for scanned documents Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via `document-versions/uuid:pk/download/` API by allowing any user to download any file. How to fix Authorization Bypass Through User-Controlled Key? Upgrade `papermerge-core` to version 2.1.0b7 or higher.	[,2.1.0b7)

Authorization Bypass Through User-Controlled Key

papermerge-core is an Open source document management system designed for scanned documents

Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via document-versions/uuid:pk/download/ API by allowing any user to download any file.

How to fix Authorization Bypass Through User-Controlled Key?

Upgrade papermerge-core to version 2.1.0b7 or higher.

[,2.1.0b7)

Go back to all versions of this package