3 matches found
CVE-2026-42185
People is an application to handle users and teams, and distribute permissions across La Suite. Prior to version 1.25.0, a user holding the Administrator role on a mail domain could send a crafted invitation request to promote any existing user including users with no current domain access to the...
PT-2026-45066
Name of the Vulnerable Software and Affected Versions praisonai-platform affected versions not specified Description A vertical privilege escalation exists where a user with the lowest privilege level can promote themselves to a workspace owner. The issue occurs because the PATCH...
PT-2026-39188
Name of the Vulnerable Software and Affected Versions People versions prior to 1.25.0 Description An issue in the application allows a user with the Administrator role on a mail domain to promote any existing user, including those without current domain access, to the Owner role. This is achieved...