GHSA-jj92-236g-5h8pMedium

Broken object-level access control on the Template API in MicroRealEstate allows attackers to...

Published
July 7, 2026
Last Modified
July 7, 2026

🔗 CVE IDs covered (1)

📋 Description

Broken object-level access control on the Template API in MicroRealEstate allows attackers to retrieve document templates used by other organizations without authorization.

This issue affects MicroRealEstate: through 1.0.0-alpha3.

🔗 References (4)