📦 Feripro

An incorrect access control vulnerability in Feripro allows remote attackers to export sensitive registration and participant data via the /admin/programm/<program_id>/export/statistics endpoint witho...

This vulnerability allows remote attackers to access the user privilege management overview page without proper authentication, exposing a list of all users and their permissions in Feripro systems. I...