{"vulnerability": "CVE-2025-2637", "sightings": [{"uuid": "49901c36-0f59-4e1b-9032-cc45210a2385", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26377", "type": "seen", "source": "Telegram/vEXhmHLUKpE92yUkDLFo_nQzaP6w4B8ZTzitUZ1_hGZlUqw", "content": "", "creation_timestamp": "2025-02-12T15:37:02.000000Z"}, {"uuid": "9ef5cc66-f450-4c01-8a87-8e5586b868e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2637", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkzdrmntkf24", "content": "", "creation_timestamp": "2025-03-23T03:53:46.032210Z"}, {"uuid": "e58629f3-594c-48ea-942e-18a812a2f0cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsvs36s32l", "content": "", "creation_timestamp": "2025-02-17T22:40:54.303186Z"}, {"uuid": "40f837cf-7d5c-483c-84a8-94c1e34ea655", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsvs5bba23", "content": "", "creation_timestamp": "2025-02-17T22:40:54.958405Z"}, {"uuid": "40e4e956-9f23-429a-b471-233ae9277fc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsvt5k5i2v", "content": "", "creation_timestamp": "2025-02-17T22:40:56.437650Z"}, {"uuid": "03f86d5c-a86b-49f9-b35c-d907408fae9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsvu5ttn2g", "content": "", "creation_timestamp": "2025-02-17T22:40:57.882562Z"}, {"uuid": "fe91c99f-82d1-4679-b3b6-18f742f8e70d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26371", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsvv67ia2v", "content": "", "creation_timestamp": "2025-02-17T22:40:58.979260Z"}, {"uuid": "8a888e03-1d37-42b7-bfb5-26c7805507c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsxpj7fl2g", "content": "", "creation_timestamp": "2025-02-17T22:41:58.383446Z"}, {"uuid": "e7107da8-9e1b-44b7-aa3e-de4d7e51e9af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsxpl36y2o", "content": "", "creation_timestamp": "2025-02-17T22:41:58.949596Z"}, {"uuid": "3911e83d-09ea-4e9d-b1bc-8b0758e6b0c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsxqlr722y", "content": "", "creation_timestamp": "2025-02-17T22:42:00.512839Z"}, {"uuid": "2ca0bb62-167f-4e9b-9aa7-5195e1a239a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsxrmahy23", "content": "", "creation_timestamp": "2025-02-17T22:42:01.940142Z"}, {"uuid": "3f23644f-2d8e-4370-a577-a76396f1ba3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26375", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifsxsmms62e", "content": "", "creation_timestamp": "2025-02-17T22:42:03.021285Z"}, {"uuid": "62139c74-f12c-40b1-adce-a883b7431c10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifszmxpla2e", "content": "", "creation_timestamp": "2025-02-17T22:43:02.832369Z"}, {"uuid": "9cb9daa3-deb7-4608-9ce4-833e82a179c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifszmzy4w2e", "content": "", "creation_timestamp": "2025-02-17T22:43:03.416168Z"}, {"uuid": "d87fc158-f116-49ee-89d9-cab95256b9c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifszo2jqf2z", "content": "", "creation_timestamp": "2025-02-17T22:43:04.595931Z"}, {"uuid": "4d6e0fef-39b6-45e6-b02e-8c9ccf121e82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifszp32qc2y", "content": "", "creation_timestamp": "2025-02-17T22:43:06.120980Z"}, {"uuid": "4f482546-2f9d-4ce2-8161-e0b02851305f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26378", "type": "seen", "source": "https://bsky.app/profile/vulns.bsky.social/post/3lifszq3jx32l", "content": "", "creation_timestamp": "2025-02-17T22:43:07.525238Z"}, {"uuid": "9b24e607-c16a-4604-8668-145ab4ece645", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26370", "type": "seen", "source": "https://t.me/cvedetector/17877", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26370 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26370 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to remove privileges from user groups via crafted HTTP requests. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:54.000000Z"}, {"uuid": "ea08d57d-1019-450d-a65f-70fb91cdb018", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2637", "type": "seen", "source": "https://t.me/cvedetector/20886", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2637 - JIZHICMS Remote Improper Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2637 \nPublished : March 23, 2025, 12:15 a.m. | 1\u00a0hour, 34\u00a0minutes ago \nDescription : A vulnerability, which was classified as problematic, has been found in JIZHICMS up to 1.7.0. Affected by this issue is some unknown functionality of the file /user/userinfo.html of the component Account Profile Page. The manipulation of the argument jifen leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-23T03:05:52.000000Z"}, {"uuid": "1b443014-3a7c-47ea-a623-2977bcc7428b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113991464906451678", "content": "", "creation_timestamp": "2025-02-12T14:48:41.937128Z"}, {"uuid": "39d62eee-39a0-4540-b1ce-f5c159abcc29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113991465046191646", "content": "", "creation_timestamp": "2025-02-12T14:48:42.398011Z"}, {"uuid": "5a9915ff-7d5b-40e7-9618-53aebac4e533", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26377", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113991465003892051", "content": "", "creation_timestamp": "2025-02-12T14:48:44.392593Z"}, {"uuid": "b4f1ddf4-ef29-45ab-9c73-966563d7cba3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113991464947758008", "content": "", "creation_timestamp": "2025-02-12T14:48:44.710376Z"}, {"uuid": "1ab03d39-011c-4f5d-9cfc-a16a3bd5b630", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhyhdxxf3y26", "content": "", "creation_timestamp": "2025-02-12T15:09:31.718325Z"}, {"uuid": "9fc9e86d-0bac-417c-a41b-e0d8b87979a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhyhdykk2k2v", "content": "", "creation_timestamp": "2025-02-12T15:09:34.117336Z"}, {"uuid": "4cdce4f7-8c68-4b28-af8a-be9edc528860", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhyhdyrtcl24", "content": "", "creation_timestamp": "2025-02-12T15:09:35.213786Z"}, {"uuid": "7b98fd8f-4684-4242-ba08-3863b2941726", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26377", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhyhdz26zs2v", "content": "", "creation_timestamp": "2025-02-12T15:09:36.405409Z"}, {"uuid": "79368364-311e-4fde-b40b-d39f7e4809e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26370", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991709972553512", "content": "", "creation_timestamp": "2025-02-12T15:50:57.788571Z"}, {"uuid": "dcfdbea9-077f-4ae1-a167-2ccacc84f3d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26371", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991709986472403", "content": "", "creation_timestamp": "2025-02-12T15:50:58.025662Z"}, {"uuid": "1781a33b-2b49-44d7-8415-4aba832fe12e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26372", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991710001945554", "content": "", "creation_timestamp": "2025-02-12T15:50:58.473301Z"}, {"uuid": "e4ac2416-f95d-4381-8243-a01d65bad759", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26373", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991769001848142", "content": "", "creation_timestamp": "2025-02-12T16:05:58.537437Z"}, {"uuid": "c1c2eb08-825d-41af-b5c6-da68b28ac7fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26374", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991769016516633", "content": "", "creation_timestamp": "2025-02-12T16:05:58.789763Z"}, {"uuid": "2f4a2504-c80f-4faf-a35c-10831083cb8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26375", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991769032044865", "content": "", "creation_timestamp": "2025-02-12T16:05:59.053694Z"}, {"uuid": "08396e1b-9836-4dcd-904d-2a5937f41581", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26376", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991769045750140", "content": "", "creation_timestamp": "2025-02-12T16:05:59.379371Z"}, {"uuid": "d9c40944-de5d-42cd-b6fa-d43cb5db7134", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26377", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991828047012863", "content": "", "creation_timestamp": "2025-02-12T16:20:59.784851Z"}, {"uuid": "6022e0f2-d054-4f50-97cf-3d405fa3dc6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26378", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113991828061915590", "content": "", "creation_timestamp": "2025-02-12T16:20:59.917583Z"}, {"uuid": "f61e1546-8964-42a2-8ce8-0eeaf4624b73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26376", "type": "seen", "source": "https://t.me/cvedetector/17872", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26376 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26376 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to modify user data via crafted HTTP requests. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:47.000000Z"}, {"uuid": "da44a2b6-ed5e-492d-8d13-8b17b573d925", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "https://t.me/cvedetector/17871", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26375 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26375 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to create users with arbitrary privileges via crafted HTTP requests. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:47.000000Z"}, {"uuid": "b31d2691-eaef-4f6f-a4c6-b8f43eec1d9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26374", "type": "seen", "source": "https://t.me/cvedetector/17870", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26374 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26374 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/users/routes.lua (users endpoint) in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to enumerate users via crafted HTTP requests. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:46.000000Z"}, {"uuid": "e53e5e4c-dfcb-4c4b-8e2f-c166803f5781", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26373", "type": "seen", "source": "https://t.me/cvedetector/17869", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26373 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26373 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/users/routes.lua (user endpoint) in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to enumerate users via crafted HTTP requests. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:42.000000Z"}, {"uuid": "35eda51b-8771-4b83-9c95-0909e680e649", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26372", "type": "seen", "source": "https://t.me/cvedetector/17868", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26372 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26372 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to remove users from groups via crafted HTTP requests. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:41.000000Z"}, {"uuid": "f5126887-ceb8-4d2c-b216-1e5f884d5144", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "https://t.me/cvedetector/17867", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26371 - Q-Free MaxTime Unauthorized Group User Addition\", \n  \"Content\": \"CVE ID : CVE-2025-26371 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/user-groups/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to add users to groups via crafted HTTP requests. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:40.000000Z"}, {"uuid": "761fdad3-bee8-4981-ba37-9b7f0bf75c71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26377", "type": "seen", "source": "https://t.me/cvedetector/17866", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26377 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26377 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to remove users via crafted HTTP requests. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:40.000000Z"}, {"uuid": "487d96b6-2634-4a56-bd28-6fa3b443e4df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "https://t.me/cvedetector/17865", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26378 - Q-Free MaxTime Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26378 \nPublished : Feb. 12, 2025, 2:15 p.m. | 38\u00a0minutes ago \nDescription : A CWE-862 \"Missing Authorization\" in maxprofile/users/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated (low-privileged) attacker to reset passwords, including the ones of administrator accounts, via crafted HTTP requests. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T16:02:39.000000Z"}, {"uuid": "055d0ab5-4652-46c8-8c53-411edfcfd1ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26375", "type": "seen", "source": "Telegram/vEXhmHLUKpE92yUkDLFo_nQzaP6w4B8ZTzitUZ1_hGZlUqw", "content": "", "creation_timestamp": "2025-02-12T15:37:02.000000Z"}, {"uuid": "c5d51df6-9933-41cc-b69a-f55e373ffea1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26372", "type": "seen", "source": "Telegram/vEXhmHLUKpE92yUkDLFo_nQzaP6w4B8ZTzitUZ1_hGZlUqw", "content": "", "creation_timestamp": "2025-02-12T15:37:02.000000Z"}, {"uuid": "44f1924f-cb1d-4397-ab34-e70c4f4d3c97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26371", "type": "seen", "source": "Telegram/vEXhmHLUKpE92yUkDLFo_nQzaP6w4B8ZTzitUZ1_hGZlUqw", "content": "", "creation_timestamp": "2025-02-12T15:37:02.000000Z"}, {"uuid": "5ebc564e-8b41-4583-9056-ae78b7b1a42d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26370", "type": "seen", "source": "Telegram/vEXhmHLUKpE92yUkDLFo_nQzaP6w4B8ZTzitUZ1_hGZlUqw", "content": "", "creation_timestamp": "2025-02-12T15:37:02.000000Z"}, {"uuid": "e0c4dc02-98d2-46ed-93f8-5f8fa62e2e8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26378", "type": "seen", "source": "Telegram/vEXhmHLUKpE92yUkDLFo_nQzaP6w4B8ZTzitUZ1_hGZlUqw", "content": "", "creation_timestamp": "2025-02-12T15:37:02.000000Z"}]}