CVE-2024-41517 Information

Description

An Incorrect Access Control vulnerability in /admin/benutzer/institution/rechteverwaltung/uebersicht\ in Feripro <= v2.2.3 allows remote attackers to get a list of all users and their corresponding privileges.

Reference

http://feripro.com http://mecodia.com https://piuswalter.de/blog/multiple-vulnerabilities-in-feripro/