CVE-2025-65032 | lukevella rallly up to 4.5.3 participantId authorization (GHSA-q9m7-chfx-43xw)

A vulnerability, which was classified as problematic, has been found in lukevella rallly up to 4.5.3. Affected is an unknown function. Performing manipulation of the argument participantId results in authorization bypass.

This vulnerability is identified as CVE-2025-65032. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More