We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
This allows an attacker to gain complete access to any QueryTree organization if they know the organisation ID.
The problem is fixed in 3.0.99
If you have any questions or comments about this advisory please open an issue in the QueryTree github
Impact
This allows an attacker to gain complete access to any QueryTree organization if they know the organisation ID.
Patches
The problem is fixed in 3.0.99
References
For more information
If you have any questions or comments about this advisory please open an issue in the QueryTree github