AI Score
Confidence
Low
EPSS
Percentile
50.2%
Bolt before 3.3.6 does not properly restrict access to _profiler routes, related to EventListener/ProfilerListener.php and Provider/EventListenerServiceProvider.php.
_profiler
EventListener/ProfilerListener.php
Provider/EventListenerServiceProvider.php
www.securityfocus.com/bid/101777
github.com/bolt/bolt
github.com/bolt/bolt/commit/aa21787241945457a2e4abc8b079672935fe0840
github.com/bolt/bolt/releases/tag/v3.3.6
nvd.nist.gov/vuln/detail/CVE-2017-16754