CVE-2022-23067
The CVE-2022-23067 entry applies to ToolJet versions v0.5.0–v1.2.2, where a token leakage vulnerability via the Referer header can lead to account takeover. According to the provided sources, if a user opens an invite/signup link and then clicks external links, the password/signup token is expose...