CVE-2023-25621MEDIUMCVSS 6.5fixed in 2.6.22023-02-23
CVE-2023-25621 [MEDIUM] CVE-2023-25621: Privilege Escalation vulnerability in Apache Software Foundation Apache Sling.
Any content author is
Privilege Escalation vulnerability in Apache Software Foundation Apache Sling.
Any content author is able to create i18n dictionaries in the repository in a location the author has write access to. As these translations are used across the whole product, it allows an author to change any text or dialog in the product. For example an attacker might fool some
nvd