CVE-2025-41335 | CanalDenuncia.app up to 4.4.7 buscarEmpresaById.php id_sociedad authorization

A vulnerability, which was classified as problematic, has been found in CanalDenuncia.app up to 4.4.7. This affects an unknown part of the file /api/buscarEmpresaById.php. The manipulation of the argument id_sociedad leads to missing authorization.

This vulnerability is uniquely identified as CVE-2025-41335. The attack is possible to be carried out remotely. No exploit exists.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More