CVE-2025-12283 MEDIUM

CVE-2025-12283: code-projects Client Details System authorization

Vendor Code-Projects
Product Client Details System
Weakness CWE-639 · IDOR
Published October 27, 2025
Last update January 7, 2026

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A security flaw has been discovered in code-projects Client Details System 1.0. The impacted element is an unknown function. The manipulation results in authorization bypass. The attack can be launched remotely. The exploit has been released to the public and may be exploited.

Key dates

02Disclosure timeline

October 27, 2025 CVE published
January 7, 2026 Record updated