exploitDog

GHSA-4h25-6mgv-2q43

Опубликовано: 10 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 6.9

CVSS3: 7.5

Описание

Absolute path disclosure vulnerability in DM Corporative CMS. This vulnerability allows an attacker to view the contents of webroot/file, if navigating to a non-existent file.

Absolute path disclosure vulnerability in DM Corporative CMS. This vulnerability allows an attacker to view the contents of webroot/file, if navigating to a non-existent file.

Ссылки

EPSS

Процентиль: 14%

0.00045

Низкий

6.9 Medium

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2025-40662

CVSS3: 7.5

nvd

8 месяцев назад

Absolute path disclosure vulnerability in DM Corporative CMS. This vulnerability allows an attacker to view the contents of webroot/file, if navigating to a non-existent file.

EPSS

Процентиль: 14%

0.00045

Низкий

6.9 Medium

CVSS4

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200