CVE-2024-4538

Publication date

2024-05-07 11:35:47

Family

INCIBE

State

PUBLISHED

Description

IDOR vulnerability in Janto Ticketing Software affecting version 4.3r10. This vulnerability could allow a remote user to obtain a users event ticket by creating a specific request with the ticket reference ID, leading to the exposure of sensitive user data.