2025-01-06 00:00:00
mitre
PUBLISHED
Grocy through 4.3.0 allows remote attackers to obtain sensitive information via direct requests to pages that are not shown in the UI, such as calendar and recipes.