What is CVE-2025-4909?

CVE-2025-4909 is a high-severity vulnerability in Sourcecodester Client Database Management System, classified under CWE-548. CVSS score: 7.3/10. Published 2025-05-19.

How severe is CVE-2025-4909?

High severity. CVSS v3 base score is 7.3 out of 10.

Is CVE-2025-4909 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Sourcecodester Client Database Management System

CVE-2025-4909

A vulnerability classified as critical was found in SourceCodester Client Database Management System 1.0. This vulnerability affects unknown code. The manipulation leads to exposure of information through directory listing. The attack can…

EPSS: 0.003 (54.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L.

Affected products

Sourcecodester Client Database Management System — versions 1.0

Weakness classification (CWE)

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

VDB-309466 | SourceCodester Client Database Management System exposure of information through directory listing (vdb-entry)
VDB-309466 | CTI Indicators (IOB, IOC, TTP) (signature, permissions-required)
Submit #578723 | sourcecodester Client Database Management System v1.0 Directory traversal (third-party-advisory)
github.com/dengxun628/cve/issues/3 (exploit, issue-tracking)
www.sourcecodester.com/ (product)

Frequently asked questions

What is CVE-2025-4909?: CVE-2025-4909 is a high-severity vulnerability in Sourcecodester Client Database Management System, classified under CWE-548. CVSS score: 7.3/10. Published 2025-05-19.
How severe is CVE-2025-4909?: High severity. CVSS v3 base score is 7.3 out of 10.
Is CVE-2025-4909 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.