CVE-2025-13283
- EPSS 0.14%
- Veröffentlicht 17.11.2025 03:30:43
- Zuletzt bearbeitet 19.12.2025 17:01:39
TenderDocTransfer developed by Chunghwa Telecom has a Arbitrary File Copy and Paste vulnerability. The application sets up a simple local web server and provides APIs for communication with the target website. Due to the lack of CSRF protection in t...
CVE-2025-13282
- EPSS 0.53%
- Veröffentlicht 17.11.2025 03:24:15
- Zuletzt bearbeitet 19.12.2025 17:02:10
TenderDocTransfer developed by Chunghwa Telecom has a Arbitrary File Delete vulnerability. The application sets up a simple local web server and provides APIs for communication with the target website. Due to the lack of CSRF protection in the APIs, ...
CVE-2024-12642
- EPSS 1.52%
- Veröffentlicht 16.12.2024 07:15:06
- Zuletzt bearbeitet 23.12.2025 19:53:25
TenderDocTransfer from Chunghwa Telecom has an Arbitrary File Write vulnerability. The application sets up a simple local web server and provides APIs for communication with the target website. Due to the lack of CSRF protection for the APIs, unauthe...
CVE-2024-12641
- EPSS 19.41%
- Veröffentlicht 16.12.2024 07:15:05
- Zuletzt bearbeitet 23.12.2025 19:54:52
TenderDocTransfer from Chunghwa Telecom has a Reflected Cross-site scripting vulnerability. The application sets up a simple local web server and provides APIs for communication with the target website. Due to the lack of CSRF protection for the APIs...