Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2025-56289
- EPSS 0.03%
- Veröffentlicht 16.09.2025 00:00:00
- Zuletzt bearbeitet 18.09.2025 16:50:34
code-projects Document Management System 1.0 has a Cross Site Scripting (XSS) vulnerability, where attackers can leak admin's cookie information by entering malicious XSS code in the Company field when adding files.
5.4
CVE-2025-8433
- EPSS 0.09%
- Veröffentlicht 01.08.2025 03:02:05
- Zuletzt bearbeitet 05.08.2025 19:04:43
A vulnerability was found in code-projects Document Management System 1.0 and classified as critical. This issue affects the function unlink of the file /dell.php. The manipulation of the argument ID leads to path traversal. The attack may be initiat...
6.3
CVE-2025-8171
- EPSS 0.05%
- Veröffentlicht 25.07.2025 21:32:05
- Zuletzt bearbeitet 05.08.2025 21:04:38
A vulnerability, which was classified as critical, has been found in code-projects Document Management System 1.0. This issue affects some unknown processing of the file /insert.php. The manipulation of the argument uploaded_file leads to unrestricte...
1