@jhb.software/payload-cloudinary-plugin

@jhb.software/payload-cloudinary-plugin: Unrestricted signature generation via paramsToSign

The plugin's signing endpoint at POST /api/cloudinary-generate-signature passes attacker-supplied paramsToSign directly to cloudin