Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 3:7 p.m.12 views

CVE-2025-26367

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to create arbitrary user groups via crafted HTTP requests...

4.3CVSS6.8AI score0.00287EPSS
Exploits0References1
NVD
NVD
added 2025/02/12 2:15 p.m.17 views

CVE-2025-26367

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to create arbitrary user groups via crafted HTTP requests...

4.3CVSS0.00287EPSS
Exploits0References1
OSV
OSV
added 2025/02/12 2:15 p.m.4 views

CVE-2025-26367

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to create arbitrary user groups via crafted HTTP requests...

4.3CVSS5.9AI score0.00287EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 1:29 p.m.9 views

CVE-2025-26367

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to create arbitrary user groups via crafted HTTP requests...

4.3CVSS4.7AI score0.00287EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/12 1:29 p.m.25 views

CVE-2025-26367

A CWE-862 "Missing Authorization" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated low-privileged attacker to create arbitrary user groups via crafted HTTP requests...

4.3CVSS0.00287EPSS
Exploits0References1
Rows per page
Query Builder