Unknown · Be Popia Compliant · CVE-2022-1186
**Name of the Vulnerable Software and Affected Versions**
Be POPIA Compliant versions up to and including 1.1.5
**Description**
The issue exposes sensitive information, including site visitors' emails and usernames, to unauthenticated users through an API route.
**Recommendations**
For versions up to and including 1.1.5, update to a version higher than 1.1.5 to resolve the issue.