CVE-2025-41335
- EPSS 0.05%
- Veröffentlicht 04.11.2025 13:15:43
- Zuletzt bearbeitet 05.11.2025 17:03:59
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'id' and ' 'id_sociedad' in '/api/buscarEmpresaById.php'.
CVE-2025-41113
- EPSS 0.05%
- Veröffentlicht 04.11.2025 13:15:35
- Zuletzt bearbeitet 05.11.2025 17:06:37
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'id_denuncia' in '/backend/api/buscarDenunciaByPin.php'.
CVE-2025-41114
- EPSS 0.05%
- Veröffentlicht 04.11.2025 13:15:35
- Zuletzt bearbeitet 05.11.2025 17:06:21
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameters 'id_denuncia' and 'id_user' in '/backend/api/buscarDocumen...
CVE-2025-41111
- EPSS 0.05%
- Veröffentlicht 04.11.2025 13:15:34
- Zuletzt bearbeitet 05.11.2025 17:06:59
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'id_denuncia' in '/backend/api/buscarComentariosByDenuncia....
CVE-2025-41112
- EPSS 0.05%
- Veröffentlicht 04.11.2025 13:15:34
- Zuletzt bearbeitet 05.11.2025 17:06:49
A lack of authorisation vulnerability has been detected in CanalDenuncia.app. This vulnerability allows an attacker to access other users' information by sending a POST through the parameter 'web' in '/backend/api/buscarConfiguracionParametros2.php'.