CVE-2025-12283

Published: Oct 27, 2025Modified: Apr 29, 2026

2.1

Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: CNA (Secondary)

Description

A security flaw has been discovered in code-projects Client Details System 1.0. The impacted element is an unknown function. The manipulation results in authorization bypass. The attack can be launched remotely. The exploit has been released to the public and may be exploited.

Affected (1)

Products: Fabian: Client Details System

1 product

Client Details System

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Fabian Client Details System	Version 1.0

Related CWEs

Improper Authorization

The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.

Authorization Bypass Through User-Controlled Key

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

References (5)

https://code-projects.org/

Source: cna@vuldb.com

Product

https://github.com/hellonewbie/tutorial/issues/11

Source: cna@vuldb.com

ExploitThird Party Advisory

https://vuldb.com/?ctiid.329953

Source: cna@vuldb.com

Permissions RequiredVDB Entry

https://vuldb.com/?id.329953

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://vuldb.com/?submit.674213

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

Timeline

No history available yet.