alf.io is an open source ticket reservation system. Prior to version 2.0-Mr-2402, an attacker can access data from other organizers. The attacker can use a specially crafted request to receive the e-mail log sent by other events. Version 2.0-M4-2402 fixes this issue.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HAlf
APPAlf< 2.0-m4-2402
Powiązane podatności
alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior...
alf.io is an open source ticket reservation system. Prior to version 2.0-Mr-2402, organization owners can view...
Alf.io is a free and open source event attendance management system. In versions prior to 2.0-M4-2402 users ca...
Improper Neutralization of Formula Elements in a CSV File in GitHub repository alfio-event/alf.io prior to 2.0...
Authorization Bypass Through User-Controlled Key in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304.