CVE Details
Basic Information
| Title | code-projects Document Management System dell.php unlink path traversal |
|---|---|
| Type | cve |
| Published | 2025-08-01T03:02:05.714Z |
| Modified | 2025-08-01T03:02:05.714Z |
Product Information
| Vendor | code-projects |
|---|---|
| Product | Document Management System |
| Version | 1.0 |
CVSS Information
| Base Score | 5.3 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A path traversal vulnerability in code-projects Document Management System 1.0 allows remote attackers to manipulate the ID argument in dell.php, potentially leading to unauthorized file access. The exploit is publicly disclosed, increasing the risk of exploitation. |
|---|---|
| AI Severity | Medium |
| AI Vendor | code-projects |
| AI Product | Document Management System |
| AI Version | 1.0 |
Affected Products
- code-projects Document Management System 1.0
Additional Information
| CWE List | CWE-22 |
|---|---|
| Source | VulDB |
Description
A vulnerability was found in code-projects Document Management System 1.0 and classified as critical. This issue affects the function unlink of the file /dell.php. The manipulation of the argument ID leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.