← back
CVE-2025-12283

code-projects Client Details System authorization

CVSS 5.3 MEDIUMEPSS 0.4%CWE-285CWE-639
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.3EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
27 Oct 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A security flaw has been discovered in code-projects Client Details System 1.0. The impacted element is an unknown function. The manipulation results in authorization bypass. The attack can be launched remotely. The exploit has been released to the public and may be exploited.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P
Affected products
code-projects · Client Details System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://code-projects.org/https://github.com/hellonewbie/tutorial/issues/11https://vuldb.com/?ctiid.329953https://vuldb.com/?id.329953https://vuldb.com/?submit.674213