Joturl

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-24949 MEDIUM This Month

In JotUrl 2.0, is possible to bypass security requirements during the password change process. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Joturl

NVD

CVSS 3.1

6.5

EPSS

0.2%

CVE-2025-24948 MEDIUM This Month

In JotUrl 2.0, passwords are sent via HTTP GET-type requests, potentially exposing credentials to eavesdropping or insecure records. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Joturl

NVD

CVSS 3.1

6.5

EPSS

0.3%

CVE-2025-24949

EPSS 0% CVSS 6.5

MEDIUM This Month

In JotUrl 2.0, is possible to bypass security requirements during the password change process. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Joturl

NVD

CVE-2025-24948

EPSS 0% CVSS 6.5

MEDIUM This Month

In JotUrl 2.0, passwords are sent via HTTP GET-type requests, potentially exposing credentials to eavesdropping or insecure records. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Joturl

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy