CVE-2025-4909

MEDIUM Year: 2025
CVSS v3 Score
7.3
High
CVSS v2 Score
7.5
High
Weakness Type
CWE-548
View all →

Vulnerability Description

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Related Vulnerabilities

CVE-2025-2038

MEDIUM
CVSS:7.3(High)

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /upload/. The manipulation leads to e...

CWE-5482025

CVE-2016-15019

HIGH
CVSS:7.5(High)

A vulnerability was found in tombh jekbox. It has been rated as problematic. This issue affects some unknown processing of the file lib/server.rb. The manipulation leads to exposure of information thr...

CWE-5482016

CVE-2017-6045

HIGH
CVSS:7.5(High)

An Information Exposure issue was discovered in Trihedral VTScada Versions prior to 11.2.26. Some files are exposed within the web server application to unauthenticated users. These files may contain ...

CWE-5482017

CVE-2018-10590

HIGH
CVSS:7.5(High)

In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAcce...

CWE-5482018

CVE-2018-14785

HIGH
CVSS:7.5(High)

NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior. The directory of the device is listed openly without authentication.

CWE-5482018

CVE-2018-16493

HIGH
CVSS:7.5(High)

A path traversal vulnerability was found in module static-resource-server 1.7.2 that allows unauthorized read access to any file on the server by appending slashes in the URL.

CWE-5482018