CVE-2025-4909

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
References
Link Resource
https://github.com/dengxun628/cve/issues/3 Exploit Issue Tracking Third Party Advisory
https://vuldb.com/?ctiid.309466 Permissions Required VDB Entry
https://vuldb.com/?id.309466 Third Party Advisory VDB Entry
https://vuldb.com/?submit.578723 Third Party Advisory VDB Entry
https://www.sourcecodester.com/ Product
https://github.com/dengxun628/cve/issues/3 Exploit Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:lerouxyxchire:client_database_management_system:1.0:*:*:*:*:*:*:*

History

28 May 2025, 13:08

Type Values Removed Values Added
First Time Lerouxyxchire client Database Management System
Lerouxyxchire
Summary
  • (es) Se encontró una vulnerabilidad clasificada como crítica en SourceCodester Client Database Management System 1.0. Esta vulnerabilidad afecta a código desconocido. La manipulación provoca la exposición de información a través de listados de directorios. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.
CPE cpe:2.3:a:lerouxyxchire:client_database_management_system:1.0:*:*:*:*:*:*:*
References () https://github.com/dengxun628/cve/issues/3 - () https://github.com/dengxun628/cve/issues/3 - Exploit, Issue Tracking, Third Party Advisory
References () https://vuldb.com/?ctiid.309466 - () https://vuldb.com/?ctiid.309466 - Permissions Required, VDB Entry
References () https://vuldb.com/?id.309466 - () https://vuldb.com/?id.309466 - Third Party Advisory, VDB Entry
References () https://vuldb.com/?submit.578723 - () https://vuldb.com/?submit.578723 - Third Party Advisory, VDB Entry
References () https://www.sourcecodester.com/ - () https://www.sourcecodester.com/ - Product

19 May 2025, 14:15

Type Values Removed Values Added
References () https://github.com/dengxun628/cve/issues/3 - () https://github.com/dengxun628/cve/issues/3 -

19 May 2025, 04:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-19 04:15

Updated : 2025-05-28 13:08


NVD link : CVE-2025-4909

Mitre link : CVE-2025-4909

CVE.ORG link : CVE-2025-4909


JSON object : View

Products Affected

lerouxyxchire

  • client_database_management_system
CWE
CWE-548

Exposure of Information Through Directory Listing

CWE-552

Files or Directories Accessible to External Parties