CVE & Vulnerability

CVE-2025-26377 - Q-Free MaxTime Missing Authorization Vulnerability

CVE ID : CVE-2025-26377 Published : Feb. 12, 2025, 2:15 p.m. | 2 hours, 29 minutes ago Description : A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to remove users via crafted HTTP requests. Severity: 8.1 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

AutorAutor
Feb 12, 2025 - 17:47
 0  0
CVE-2025-26377 - Q-Free MaxTime Missing Authorization Vulnerability
CVE ID : CVE-2025-26377
Published : Feb. 12, 2025, 2:15 p.m. | 2 hours, 29 minutes ago
Description : A CWE-862 "Missing Authorization" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to remove users via crafted HTTP requests.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read More

Tags:

Vorheriger Artikel

CVE-2025-26376 - Q-Free MaxTime Missing Authorization Vulnerability

Nächster Artikel

Til Schweiger glänzt nicht mehr ganz so doll

Autor
Autor

Verwandte Beiträge

CVE-2024-6987 - "Orchid Store WordPress Unauthorized Plugin Activation"

CVE-2024-6987 - "Orchid Store WordPress Unauthorized Pl...

Autor Aug 8, 2024  0  2

CVE-2024-5624 - B&R APROL Reflected XSS

CVE-2024-5624 - B&R APROL Reflected XSS

Autor Aug 29, 2024  0  1

CVE-2025-20033 - Mattermost Denial of Service Swagger

CVE-2025-20033 - Mattermost Denial of Service Swagger

Autor Jan 9, 2025  0  0