CVE-2025-41345 | CanalDenuncia.app up to 4.4.7 buscarDenunciasById.php id_denuncia/id_user authorization

A vulnerability marked as problematic has been reported in CanalDenuncia.app up to 4.4.7. Affected by this issue is some unknown functionality of the file /backend/api/buscarDenunciasById.php. Performing manipulation of the argument id_denuncia/id_user results in missing authorization.

This vulnerability is reported as CVE-2025-41345. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More