CVE-2025-59843 | FlagForgeCTF flagForge up to 2.3.0 Public Endpoint /api/user/ exposure of private personal information to an unauthorized actor (GHSA-qqjv-8r5p-7xpj)

A vulnerability classified as problematic was found in FlagForgeCTF flagForge up to 2.3.0. This affects an unknown part of the file /api/user/ of the component Public Endpoint. The manipulation results in exposure of private personal information to an unauthorized actor.

This vulnerability is known as CVE-2025-59843. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More