CVE-2025-29997 – Apache CAP Authorization Bypass

March 13, 2025
1:20 pm

CVE ID : CVE-2025-29997

Published : March 13, 2025, 12:15 p.m. | 40 minutes ago

Description : This vulnerability exists in the CAP back office application due to improper authorization checks on certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating API request URL to gain unauthorized access to other user accounts.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-29997 – Apache CAP Authorization Bypass

Elvescore.io

Recent Posts

CVE-2024-12810 – The JobCareer | Job Board Responsive WordPress Theme Unauthenticated Remote Code Execution and Data Manipulation

CVE-2024-13771 – Civi WordPress Theme Unauthenticated Password Change Bypass

CVE-2024-13772 – Civi Job Board & Freelance Marketplace WordPress Theme Plugin Authentication Bypass

CVE-2024-13773 – Civi WordPress Theme Exposed Credentials

CVE-2025-2232 – Realteo – Real Estate Plugin by Purethemes WordPress Authentication Bypass Vulnerability

CVE-2024-8176 – Libexpat XML Entity Expansion Stack Overflow Vulnerability

CVE-2025-29997 – Apache CAP Authorization Bypass

CVE-2025-29997 – Apache CAP Authorization Bypass