Boldworkplanner

Bold Workplanner

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2025-41094

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:40
  • Zuletzt bearbeitet 08.10.2025 18:18:20

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to functional contract details us...

4.3

CVE-2025-41095

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:40
  • Zuletzt bearbeitet 08.10.2025 18:18:28

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to planning counter details using...

4.3

CVE-2025-41096

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:40
  • Zuletzt bearbeitet 08.10.2025 18:18:33

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to the dates of the current contr...

4.3

CVE-2025-41097

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:40
  • Zuletzt bearbeitet 08.10.2025 18:18:37

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to basic employee details using ...

7.5

CVE-2025-41098

  • EPSS 0.04%
  • Veröffentlicht 30.09.2025 11:37:40
  • Zuletzt bearbeitet 08.10.2025 18:19:18

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a  misuse of the general enquiry web service.

6.5

CVE-2025-41099

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:40
  • Zuletzt bearbeitet 08.10.2025 18:19:30

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to the list of permissions using ...

4.3

CVE-2025-41091

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:39
  • Zuletzt bearbeitet 08.10.2025 18:53:10

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to calendar details using unautho...

4.3

CVE-2025-41092

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:39
  • Zuletzt bearbeitet 08.10.2025 18:16:44

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to time records details using una...

4.3

CVE-2025-41093

  • EPSS 0.03%
  • Veröffentlicht 30.09.2025 11:37:39
  • Zuletzt bearbeitet 08.10.2025 18:17:00

Insecure Direct Object Reference (IDOR) vulnerability in BOLD Workplanner in versions prior to 2.5.25 (4935b438f9b), consisting of a lack of adequate validation of user input, allowing an authenticated user to access to basic contract details using u...