Information Disclosure
Discription
Datasette is vulnerable to Information Disclosure. The vulnerability exists because it does not check permissions when viewing the `/-/api` endpoint, resulting in databases and tables disclosure to unauthenticated users.Read More
References
Back to Main