CVE-2025-41030
EUVD-2025-2639402.09.2025, 09:15
Lack of authorisation in Deporsite by T-INNOVA. This vulnerability allows an unauthenticated attacker to obtain information from other users via GET ‘/ajax/TInnova_v2/Integrantes_Recurso_v2_1/llamadaAjax/buscarPersona’ using the ‘dni’ parameter.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.