CVE-2026-41464 - ProjeQtor < 12.4.4 Missing Authorization via objectDetail.php
CVE ID :CVE-2026-41464 Published : April 27, 2026, 3:10 p.m. | 50 minutes ago Description :ProjeQtor versions 7.0 through 12.4.3 contain a missing authorization vulnerability in the objectDetail.php endpoint that allows authenticated users with guest-level privileges to retrieve sensitive data
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] My project against Malicious Browser Extensions
- [CYBER] Kaspersky recently disclosed PhantomRPC, a privilege escalation technique affecting all Windows versions (tested on Server 2022/2025)
- [CYBER] Litecoin Rewrites Transaction History After Exploit, Apologizes for Social Posts
- [CYBER] Why a Decade of Writing Detection Logic Makes the Mythos Exploit Numbers Less Scary
- [CYBER] Why a Decade of Writing Detection Logic Makes the Mythos Exploit Numbers Less Scary
- [CYBER] DeFi community raises $238M to save Aave from KelpDAO exploit fallout - Startup Fortune