Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 2:51 p.m.7 views

CVE-2025-26356

A CWE-35 "Path Traversal" in maxtime/api/database/database.lua setActive endpoint in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to overwrite sensitive files via crafted HTTP requests...

7.2CVSS6.7AI score0.00809EPSS
Exploits0References1
NVD
NVD
added 2025/02/12 2:15 p.m.13 views

CVE-2025-26356

A CWE-35 "Path Traversal" in maxtime/api/database/database.lua setActive endpoint in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to overwrite sensitive files via crafted HTTP requests...

7.2CVSS0.00809EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 1:28 p.m.7 views

CVE-2025-26356

A CWE-35 "Path Traversal" in maxtime/api/database/database.lua setActive endpoint in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to overwrite sensitive files via crafted HTTP requests...

7.2CVSS6.9AI score0.00809EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/12 1:28 p.m.15 views

CVE-2025-26356

A CWE-35 "Path Traversal" in maxtime/api/database/database.lua setActive endpoint in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to overwrite sensitive files via crafted HTTP requests...

7.2CVSS0.00809EPSS
Exploits0References1
CVE
CVE
added 2025/02/12 1:28 p.m.100 views

CVE-2025-26356

CVE-2025-26356 affects Q-Free MaxTime

7.2CVSS6.9AI score0.00809EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder