Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 2:39 p.m.7 views

CVE-2025-26366

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/setup/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to disable front panel authentication via crafted HTTP requests...

7.5CVSS7.4AI score0.00517EPSS
Exploits0References1
Circl
Circl
added 2025/02/12 3:35 p.m.7 views

CVE-2025-26366

creationtimestamp| type| source ---|---|--- 2025-02-12 15:35:56+00:00| seen| https://infosec.exchange/users/cve/statuses/113991650924200386 2025-02-12 15:37:04+00:00| seen| Telegram/-xvFghkm9wAI3OH5CI2F-m8akBasfMJYjd3uJLYtuPd0nF4 2025-02-12 16:02:56+00:00| seen| https://t.me/cvedetector/17879...

7.5CVSS4.8AI score0.00517EPSS
Exploits0References2
OSV
OSV
added 2025/02/12 2:15 p.m.6 views

CVE-2025-26366

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/setup/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to disable front panel authentication via crafted HTTP requests...

7.5CVSS5.8AI score0.00517EPSS
Exploits0References1
NVD
NVD
added 2025/02/12 2:15 p.m.14 views

CVE-2025-26366

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/setup/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to disable front panel authentication via crafted HTTP requests...

7.5CVSS0.00517EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/12 1:29 p.m.11 views

CVE-2025-26366

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/setup/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to disable front panel authentication via crafted HTTP requests...

7.5CVSS0.00517EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 1:29 p.m.6 views

CVE-2025-26366

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/setup/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to disable front panel authentication via crafted HTTP requests...

7.5CVSS7.8AI score0.00517EPSS
Exploits0References1
Rows per page
Query Builder