code-projects Rental Management System Log Transaction.java crlf injection_CVE-2025-14531

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was found in code-projects Rental Management System 2.0. This affects an unknown function of the file Transaction.java of the component Log Handler. Performing manipulation results in crlf injection. The attack can be initiated remotely. The exploit has been made public and could be used.

Basic Information

ID CVE-2025-14531

Source VulDB

Published Dec 11, 2025 at 18:32

Modified Dec 11, 2025 at 18:55

Affected Product

Vendor code-projects

Product Rental Management System

Version 2.0

Affected Versions code-projects Rental Management System 2.0

CWE Classification

CWE-93 CWE-74

References

{
    "lastseen": "",
    "description": "A vulnerability was found in code-projects Rental Management System 2.0. This affects an unknown function of the file Transaction.java of the component Log Handler. Performing manipulation results in crlf injection. The attack can be initiated remotely. The exploit has been made public and could be used.",
    "published": "2025-12-11T18:32:08.242Z",
    "modified": "2025-12-11T18:55:33.626Z",
    "type": "cve",
    "title": "code-projects Rental Management System Log Transaction.java crlf injection",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.335872\nhttps://vuldb.com/?ctiid.335872\nhttps://vuldb.com/?submit.703239\nhttps://github.com/asd1238525/cve/blob/main/CRLF.md\nhttps://code-projects.org/",
    "id": "CVE-2025-14531",
    "bulletinFamily": "",
    "cwe": [
        "CWE-93",
        "CWE-74"
    ],
    "cvelist": null,
    "sourceData": "code-projects Rental Management System 2.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Rental Management System",
    "version": "2.0",
    "vendor": "code-projects",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}