Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2025-56289
- EPSS 0.16%
- Veröffentlicht 16.09.2025 00:00:00
- Zuletzt bearbeitet 18.09.2025 16:50:34
code-projects Document Management System 1.0 has a Cross Site Scripting (XSS) vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files.
5.5
CVE-2025-8433
- EPSS 0.44%
- Veröffentlicht 01.08.2025 03:02:05
- Zuletzt bearbeitet 29.04.2026 01:00:01
A vulnerability was found in code-projects Document Management System 1.0 and classified as critical. This issue affects the function unlink of the file /dell.php. The manipulation of the argument ID leads to path traversal. The attack may be initiat...
6.5
CVE-2025-8171
- EPSS 0.32%
- Veröffentlicht 25.07.2025 21:32:05
- Zuletzt bearbeitet 29.04.2026 01:00:01
A vulnerability, which was classified as critical, has been found in code-projects Document Management System 1.0. This issue affects some unknown processing of the file /insert.php. The manipulation of the argument uploaded_file leads to unrestricte...
1