In Octopus prior to 3.17.7, an authenticated user who was explicitly granted the permission to invite new users (aka UserInvite) can invite users to teams with escalated privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
octopus octopus deploy |