Cal.com, an open-source scheduling platform and developer-friendly alternative to Calendly, recently patched a set of critical vulnerabilities that exposed user accounts and sensitive booking data to attackers. The flaws, discovered by Gecko’s AI security engineer in Cal.com Cloud, allowed complete account takeover for any user and unauthorized access to bookings across organizations, including private meetings […]

The post Cal.com Broken Access Controls Lead to Account Takeover and Data Exposure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

Source: gbHackers
Source Link: https://gbhackers.com/cal-com-broken-access/