IDOR vulnerability in Janto Ticketing Software affecting version 4.3r10. This vulnerability could allow a remote user to obtain a user's event ticket by creating a specific request with the ticket reference ID, leading to the exposure of sensitive user data.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2024-05-07T11:35:47.621Z
Updated: 2024-08-01T20:40:47.514Z
Reserved: 2024-05-06T09:57:42.029Z
Link: CVE-2024-4538
Vulnrichment
Updated: 2024-08-01T20:40:47.514Z
NVD
Status : Awaiting Analysis
Published: 2024-05-07T12:15:10.030
Modified: 2024-11-21T09:43:03.833
Link: CVE-2024-4538
Redhat
No data.