EUVD-2024-2960

Malicious code in bioql PyPI...

Omise: Pending invites remain valid even after the inviter is removed.

The pending invites created by a removed admin remained valid, and members already added by the removed admin remained in the team with admin privileges, even after the inviter was removed...

GO-2024-3240 Grafana org admin can delete pending invites in different org in github.com/grafana/grafana

Grafana org admin can delete pending invites in different org in github.com/grafana/grafana...

BIT-GRAFANA-2024-10452

Organization admins can delete pending invites created in an organization they are not part of...

SUSE CVE-2024-10452

Organization admins can delete pending invites created in an organization they are not part of...

GHSA-66C4-2G2V-54QW Grafana org admin can delete pending invites in different org

Organization admins can delete pending invites created in an organization they are not part of...

Grafana org admin can delete pending invites in different org

Organization admins can delete pending invites created in an organization they are not part of...

CVE-2024-10452

Organization admins can delete pending invites created in an organization they are not part of...

CVE-2024-10452

Organization admins can delete pending invites created in an organization they are not part of...

UBUNTU-CVE-2024-10452

Organization admins can delete pending invites created in an organization they are not part of...

CVE-2024-10452

Organization admins can delete pending invites created in an organization they are not part of...

CVE-2024-10452

CVE-2024-10452 affects Grafana (open‑source platform). The issue allows Organization administrators to delete pending invites in an organization they are not part of, representing an Authorization Bypass/Improper Access protection described in the connected advisories. Exploitation details are no...

CVE-2024-10452

Organization admins can delete pending invites created in an organization they are not part of...

PT-2024-16292 · Grafana +2 · Grafana +2

Name of the Vulnerable Software and Affected Versions: Grafana affected versions not specified Description: The issue allows organization admins to delete pending invites created in an organization they are not part of. This can be exploited by a Grafana org admin to delete pending invites in...

Org admin can delete pending invites in different org

Organization admins can delete pending invites created in an organization they are not part of...

CVE-2022-1385 Invitation Email is resent as a Reminder after invalidating pending email invites

Mattermost 6.4.x and earlier fails to properly invalidate pending email invitations when the action is performed from the system console, which allows accidentally invited users to join the workspace and access information from the public teams and channels...