2024-07-05 00:00:00
mitre
PUBLISHED
Insecure permissions in the component /api/admin/user of 14Finger v1.1 allows attackers to access all user information via a crafted GET request.