2024-10-29 12:48:38
@huntr_ai
PUBLISHED
An IDOR vulnerability exists in the Evaluations function of the umgws datasets section in lunary-ai/lunary versions 1.3.2. This vulnerability allows an authenticated user to update other users prompts by manipulating the id parameter in the request. The issue is fixed in version 1.4.3.