CNNVD-202512-4248 Information
Dec 24, 2025
cve
CNNVD ID
CNNVD-202512-4248
Related CVE
- CNNVD Published: 2025-12-24
Description (Chinese)
LogicalDOC Enterprise是意大利LogicalDOC公司的一个文档管理系统。 LogicalDOC Enterprise 7.7.4版本存在安全漏洞,该漏洞源于对suffix和fileVersion参数验证不足,可能导致任意文件泄露。
Description (English)
LogicalDOC Enterprise is a document management system for LogicalDOC in Italy. There is a security loophole in version 7.7.4 of LogicalDOC Enterprise, which stems from inadequate verification of the suffix and fileVersion parameters, which may lead to the disclosure of any document.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
LogicalDOC
Published
2025-12-24
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/44019 https://www.logicaldoc.com https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5450.php
Share on: