CVE-2025-29454

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-29454

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-29454.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-29454

Published

2025-04-17T21:15:50.830Z

Modified

2026-04-10T05:24:31.922270Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N CVSS Calculator

Summary

[none]

Details

An issue in personal-management-system Personal Management System 1.4.65 allows a remote attacker to obtain sensitive information via the Upload function.

References

https://www.yuque.com/morysummer/vx41bz/cyql4n0xiubspntl

Affected packages

Git / github.com/volmarg/personal-management-system

Affected ranges

Type

GIT

Repo

https://github.com/volmarg/personal-management-system

Events

Introduced

Last affected

46c28bd495126a46629721f1dfc2403506d6c686

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.4.65"
        }
    ]
}

Affected versions

1.*

1.19

1.31.1

Beta1.*

Beta1.2

Beta1.3

Beta1.4

beta1.*

beta1.0

beta1.1

v1.*

v1.0

v1.01

v1.1

v1.11

v1.12

v1.13

v1.14

v1.15

v1.17

v1.17.1

v1.17.2

v1.17.3

v1.17.4

v1.17.5

v1.17.6

v1.17.7

v1.18

v1.18.1

v1.18.2

v1.18.4

v1.18.5

v1.18.6

v1.18.7

v1.18.8

v1.18.9

v1.20

v1.20.1

v1.20.2

v1.20.3

v1.20.4

v1.20.5

v1.20.6

v1.20.7

v1.20.8

v1.20.8.1

v1.20.8.2

v1.20.8.3

v1.20.8.4

v1.20.8.5

v1.21

v1.23

v1.3

v1.31

v1.3a.1

v1.4

v1.4.01

v1.4.1

v1.4.2

v1.4.21

v1.4.22

v1.4.23

v1.4.25

v1.4.30

v1.4.31

v1.4.4

v1.4.41

v1.4.42

v1.4.43

v1.4.44

v1.4.45

v1.4.46

v1.4.50

v1.4.52

v1.4.6

v1.4.61

v1.4.62

v1.4.63

v1.4.64

v1.4.65

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-29454.json"