7.7
CVSS3.0
CVE-2025-4962 - IDOR Vulnerability in Template Creation via `projectId` Manipulation in lunary-ai/lunary
An Insecure Direct Object Reference (IDOR) vulnerability was identified in the `POST /v1/templates` endpoint of the Lunary API, affecting versions up to 0.8.8. This vulnerability allows authenticated users to create templates in another user's project by altering the `projectId` query parameter. Thβ¦
π
Published: Aug. 18, 2025, 1:27 p.m.
π Last Modified: April 15, 2026, 12:35 a.m.
4.8
CVSS4.0
CVE-2025-43732 -
Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.10, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.17 and 7.4 GA through update 92 is vulnerable to Insecure Direct Object Reference (IDOR) in the grβ¦
π
Published: Aug. 18, 2025, 1:20 p.m.
π Last Modified: Dec. 19, 2025, 2:51 p.m.
0.0
CVE-2025-57725 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
0.0
CVE-2025-57723 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
0.0
CVE-2025-57724 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
0.0
CVE-2025-57722 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
0.0
CVE-2025-57721 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
0.0
CVE-2025-57717 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
0.0
CVE-2025-57720 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
0.0
CVE-2025-57718 -
Not used
π
Published: Aug. 18, 2025, 12:44 p.m.
π Last Modified: Aug. 19, 2025, 2:55 a.m.
Filters