CVE-2024-47053

Name of the Vulnerable Software and Affected Versions Mautic (affected versions not specified)

Description The issue concerns an authorization flaw in Mautic's HTTP Basic Authentication implementation, allowing unauthorized access to sensitive report data. Specifically, an improper authorization flaw exists in Mautic's API Authorization implementation, enabling any authenticated user to access all reports and their associated data via the API, bypassing intended access controls.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.