ToolJet is an extensible, low-code framework for building business applications from ToolJet. v0.5.0 to v1.2.2 of ToolJet is vulnerable to an information disclosure vulnerability that stems from a token leak in the application. An attacker could exploit the vulnerability to access a user’s account via Referer.
CPE | Name | Operator | Version |
---|---|---|---|
ToolJet ToolJet >=v0.5.0,<=v | eq | 1.2.2 |