Lucene search
K

4 matches found

EUVD
EUVD
added 2025/11/04 1:16 p.m.5 views

EUVD-2025-37748

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'idsociedad' in '/backend/api/buscarTipoDenuncia.php'...

8.7CVSS6.2AI score0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/04 1:16 p.m.5 views

CVE-2025-41339 Missing Authorization vulnerability in CanalDenuncia.app

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'idsociedad' in '/backend/api/buscarTipoDenuncia.php'...

8.7CVSS0.0027EPSS
Exploits0References1
CVE
CVE
added 2025/11/04 1:16 p.m.14 views

CVE-2025-41339

CVE-2025-41339 affects CanalDenuncia.app. The issue is a lack of authorization that lets an attacker access other users’ information by sending a POST to /backend/api/buscarTipoDenuncia.php with the id_sociedad parameter. Documented impact is sensitive data exposure; CVSS vectors indicate high im...

8.7CVSS6.3AI score0.0027EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.3 views

CanalDenuncia App 安全漏洞

CanalDenuncia App is a reporting channel application from the Spanish company CanalDenuncia. A security vulnerability exists in CanalDenuncia App, which stems from a lack of authorization checking, which allows an attacker to send a POST request to access other users' information via the paramete...

8.7CVSS6.5AI score0.0027EPSS
Exploits0References1
Rows per page
Query Builder