2 matches found
CanalDenuncia App Information Disclosure Vulnerability (CNVD-2025-30334)
CanalDenuncia App is a reporting channel application from CanalDenuncia Spain. The CanalDenuncia App suffers from an information disclosure vulnerability caused by incorrect authorization validation of parameters id and idsociedad in /api/buscarEmpresaById.php. An attacker can use this...
PT-2025-45004
Name of the Vulnerable Software and Affected Versions CanalDenuncia.app affected versions not specified Description A lack of authorization exists in CanalDenuncia.app. An attacker can access other users' information by sending a POST request through the id sociedad parameter in the...