Security Advisory

CVE-2024-25634

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-19 19:53:52

Last updated 2024-08-01 23:44:09

Assigner GitHub_M

State PUBLISHED

Description

alf.io is an open source ticket reservation system. Prior to version 2.0-Mr-2402, an attacker can access data from other organizers. The attacker can use a specially crafted request to receive the e-mail log sent by other events. Version 2.0-M4-2402 fixes this issue.

← Browse all CVEs View on cve.org ↗