Vulnerabilities

CVE-2025-58053

by Fred · 19/12/2025

Galette is a membership management web application for non profit organizations. Prior to version 1.2.0, while updating any existing account with a self forged POST request, one can gain higher privileges. Version 1.2.0 fixes the issue.

More information : https://github.com/galette/galette/security/advisories/GHSA-r7x8-6r56-498r

Similar

Tags: Cybersecurity Alert