Anapi H6web
2 CVEs affecting Anapi H6web. Latest disclosed: 2025-02-13. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-1270 | Critical | 9.1 | 2025-02-13 | Insecure direct object reference (IDOR) vulnerability in Anapi Group's h6web, allows an authenticated attacker to access other users' information by making a P… |
CVE-2025-1271 | Medium | 6.1 | 2025-02-13 | Reflected Cross-Site Scripting (XSS) in Anapi Group's h6web. This security flaw could allow an attacker to inject malicious JavaScript code into a URL. When a… |