Apache · Apache Ofbiz · CVE-2026-31388
**Name of the Vulnerable Software and Affected Versions**
Apache OFBiz versions prior to 24.09.06
**Description**
Improper Access Control in multi-tenant deployments allows for cross-tenant data exposure via the program export feature.
**Recommendations**
Upgrade to version 24.09.06.