Canaldenuncia

Canaldenuncia.App

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-41345

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:18:42
  • Zuletzt bearbeitet 05.11.2025 17:02:49

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'id_denuncia' and 'id_user' in '/backend/api/buscarDenunci...

7.5

CVE-2025-41344

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:18:20
  • Zuletzt bearbeitet 05.11.2025 17:02:57

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'id_archivo' in '/backend/api/verArchivo.php'.

7.5

CVE-2025-41343

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:18:05
  • Zuletzt bearbeitet 05.11.2025 17:03:03

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'email' in '/backend/api/users/searchUserByEmail.php'.

7.5

CVE-2025-41342

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:17:51
  • Zuletzt bearbeitet 05.11.2025 17:03:08

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'id_user' in '/backend/api/buscarUsuarioId.php'.

7.5

CVE-2025-41341

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:17:34
  • Zuletzt bearbeitet 05.11.2025 17:03:15

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'id_denuncia' and 'seguro' in '/backend/api/buscarUsuarioB...

7.5

CVE-2025-41340

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:17:18
  • Zuletzt bearbeitet 05.11.2025 17:03:21

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'id_tp_denuncia' and 'id_sociedad' in '/backend/api/buscar...

7.5

CVE-2025-41339

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:16:56
  • Zuletzt bearbeitet 05.11.2025 17:03:30

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'id_sociedad' in '/backend/api/buscarTipoDenuncia.php'.

7.5

CVE-2025-41338

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:16:37
  • Zuletzt bearbeitet 05.11.2025 17:03:36

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'id_denuncia' and 'id_user' in '/backend/api/buscarTestigo...

7.5

CVE-2025-41337

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:16:20
  • Zuletzt bearbeitet 05.11.2025 17:03:51

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'web' in '/backend/api/buscarSSOParametros.php'.

7.5

CVE-2025-41336

  • EPSS 0.05%
  • Veröffentlicht 04.11.2025 13:16:02
  • Zuletzt bearbeitet 05.11.2025 17:03:43

A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'web' in '/backend/api/buscarConfiguracionParametros.php'.