CVE-2025-41014 | TCMAN GIM 20250304 /WS/PDAWebService.asmx GetLastDatePasswordChange Username information disclosure

Inserito da Angelo Barbosa | Dic 2, 2025 | CVE

A vulnerability was found in TCMAN GIM 20250304 and classified as problematic. Affected is the function GetLastDatePasswordChange of the file /WS/PDAWebService.asmx. Such manipulation of the argument Username leads to information disclosure.

This vulnerability is listed as CVE-2025-41014. The attack may be performed from remote. There is no available exploit.

CVE-2025-41014 | TCMAN GIM 20250304 /WS/PDAWebService.asmx GetLastDatePasswordChange Username information disclosure

Post correlati

CVE-2024-25100 | WP Swings Coupon Referral Program Plugin up to 1.7.2 on WordPress deserialization

CVE-2025-58918 | Entrada Plugin up to 5.7.7 on WordPress cross-site request forgery

CVE-2024-10783 | MainWP Child Plugin up to 5.2 on WordPress authorization

CVE-2023-52534 | Unisoc T760/T770/T820/S8000 Ngmm denial of service