4 matches found
CVE-2025-29994
This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to...
CVE-2025-29994
creationtimestamp| type| source ---|---|--- 2025-03-13 13:08:44+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114155279058410374 2025-03-13 13:31:52+00:00| seen| Telegram/xe2ey9QZy3C60YFmNe9CqutDcHb7CC1cr5CKlx9gtbgm3M 2025-03-13 15:37:08+00:00| seen| https://t.me/cvedetector/20214...
CVE-2025-29994 Improper Authentication Vulnerability in CAP back office application
This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to...
CVE-2025-29994
CVE-2025-29994 affects the CAP back office application. The root cause is an improper authentication check at an API endpoint, allowing an unauthenticated remote attacker with a valid login ID to manipulate API input parameters via URL/payload and gain unauthorized access to other user accounts. ...