A vulnerability classified as problematic has been found in HiEventsDev Hi.Events up to 1.9.0 . Affected is an unknown function of the file /api/public/check-in-lists . The manipulation leads to exposure of private personal information to an unauthorized actor. This vulnerability is documented as CVE-2026-57960 . The attack can be initiated remotely. There is not any exploit available. It is suggested to install a patch to address this issue.