7 matches found
CVE-2025-41345
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'iddenuncia' and 'iduser' in '/backend/api/buscarDenunciasById.php'...
EUVD-2025-37746
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'iddenuncia' and 'seguro' in '/backend/api/buscarUsuarioByDenuncia.php'...
CVE-2025-41341 Missing Authorization vulnerability in CanalDenuncia.app
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'iddenuncia' and 'seguro' in '/backend/api/buscarUsuarioByDenuncia.php'...
CVE-2025-41114 Missing Authorization vulnerability in CanalDenuncia.app
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'iddenuncia' and 'iduser' in '/backend/api/buscarDocumentosByIdDenunciaUsuario.php'...
PT-2025-44998
Name of the Vulnerable Software and Affected Versions CanalDenuncia.app affected versions not specified Description A missing authorization issue exists in CanalDenuncia.app that could allow an attacker to access other users' information. This is achieved by sending a POST request with the...
PT-2025-45010
Name of the Vulnerable Software and Affected Versions CanalDenuncia.app affected versions not specified Description A missing authorization issue exists in CanalDenuncia.app that allows an attacker to access other users' information. This is achieved by sending a POST request through the paramete...
CanalDenuncia App 安全漏洞
CanalDenuncia App is a reporting channel application from the Spanish company CanalDenuncia. A security vulnerability exists in CanalDenuncia App, which stems from a lack of authorization checking, which allows an attacker to access other users' information by sending a POST request containing th...