CVE-2017-8383by Jeremyin Security Bulletinson Posted on May 1, 2017 Craft CMS before 2.6.2976 does not properly restrict viewing the contents of files in the craft/app/ folder.