CVE-2024-34457 — On versions before 2.1.4, after a regular user successfully logs in, they can manually make a request using the authorization token to view everyone's user flink information, including executeSQL — CVE Database · The Intelligence Room