Do your applications use this vulnerable package?
17 Dec 2021
16 Dec 2021
How to fix?
org.craftercms:crafter-search to version 3.1.15 or higher.
org.craftercms:crafter-search is a search facade for Crafter CMS. Crafter Search proxies the real search engine deployed behind it.
Affected versions of this package are vulnerable to Information Exposure. Installations of
crafter-search is not protected, allows unauthenticated remote attackers to create, view, and delete search indexes.