CVE-2026-42279 | solidtime 0.12.0 time-entries authorization (GHSA-pmf9-pxq9-ccwr)

Inserito da Angelo Barbosa | Mag 8, 2026 | CVE

A vulnerability classified as problematic has been found in solidtime 0.12.0. Affected by this issue is some unknown functionality of the file /api/v1/organizations/{organization}/time-entries/. This manipulation causes authorization bypass.

This vulnerability is handled as CVE-2026-42279. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2026-42279 | solidtime 0.12.0 time-entries authorization (GHSA-pmf9-pxq9-ccwr)

Post correlati

CVE-2025-62254 | Liferay Portal/DXP ComboServlet path traversal

CVE-2025-70250 | D-Link DIR-513 1.10 formdumpeasysetup curTime stack-based overflow

CVE-2026-6489 | QueryMine sms up to 7ab5a9ea196209611134525ffc18de25c57d9593 Background Management Page admin/addteacher.php image unrestricted upload

CVE-2024-0993 | Tenda i6 1.0.0.9(3857) httpd /goform/WifiMacFilterGet formWifiMacFilterGet index stack-based overflow