Vulnerabilities

CVE-2025-53922

by Fred · 19/12/2025

Galette is a membership management web application for non profit organizations. Starting in version 1.1.4 and prior to version 1.2.0, a user who is logged in as group manager may bypass intended restrictions on Contributions and Transactions. Version 1.2.0 fixes the issue.

More information : https://github.com/galette/galette/security/advisories/GHSA-5jp7-5c38-3pv6

Similar

Tags: Cybersecurity Alert