CVE-2025-11631 RainyGao DocSys deleteDoc.do path traversal

🗓️ 12 Oct 2025 08:02:06Reported by VulDBType

RainyGao DocSys up to 2.02.36 allows remote path traversal via /Doc/deleteDoc.do by argument manipulation.

Reporter	Title	Published	Views	Family All 8
CNNVD	MxsDoc 路径遍历漏洞	12 Oct 202500:00	–	cnnvd
CVE	CVE-2025-11631	12 Oct 202508:02	–	cve
EUVD	EUVD-2025-33888	12 Oct 202509:30	–	euvd
NVD	CVE-2025-11631	12 Oct 202508:15	–	nvd
OSV	CVE-2025-11631	12 Oct 202508:15	–	osv
Positive Technologies	PT-2025-41711	12 Oct 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-11631	13 Oct 202508:27	–	redhatcve
Vulnrichment	CVE-2025-11631 RainyGao DocSys deleteDoc.do path traversal	12 Oct 202508:02	–	vulnrichment

[
  {
    "vendor": "RainyGao",
    "product": "DocSys",
    "versions": [
      {
        "version": "2.02.0",
        "status": "affected"
      },
      {
        "version": "2.02.1",
        "status": "affected"
      },
      {
        "version": "2.02.2",
        "status": "affected"
      },
      {
        "version": "2.02.3",
        "status": "affected"
      },
      {
        "version": "2.02.4",
        "status": "affected"
      },
      {
        "version": "2.02.5",
        "status": "affected"
      },
      {
        "version": "2.02.6",
        "status": "affected"
      },
      {
        "version": "2.02.7",
        "status": "affected"
      },
      {
        "version": "2.02.8",
        "status": "affected"
      },
      {
        "version": "2.02.9",
        "status": "affected"
      },
      {
        "version": "2.02.10",
        "status": "affected"
      },
      {
        "version": "2.02.11",
        "status": "affected"
      },
      {
        "version": "2.02.12",
        "status": "affected"
      },
      {
        "version": "2.02.13",
        "status": "affected"
      },
      {
        "version": "2.02.14",
        "status": "affected"
      },
      {
        "version": "2.02.15",
        "status": "affected"
      },
      {
        "version": "2.02.16",
        "status": "affected"
      },
      {
        "version": "2.02.17",
        "status": "affected"
      },
      {
        "version": "2.02.18",
        "status": "affected"
      },
      {
        "version": "2.02.19",
        "status": "affected"
      },
      {
        "version": "2.02.20",
        "status": "affected"
      },
      {
        "version": "2.02.21",
        "status": "affected"
      },
      {
        "version": "2.02.22",
        "status": "affected"
      },
      {
        "version": "2.02.23",
        "status": "affected"
      },
      {
        "version": "2.02.24",
        "status": "affected"
      },
      {
        "version": "2.02.25",
        "status": "affected"
      },
      {
        "version": "2.02.26",
        "status": "affected"
      },
      {
        "version": "2.02.27",
        "status": "affected"
      },
      {
        "version": "2.02.28",
        "status": "affected"
      },
      {
        "version": "2.02.29",
        "status": "affected"
      },
      {
        "version": "2.02.30",
        "status": "affected"
      },
      {
        "version": "2.02.31",
        "status": "affected"
      },
      {
        "version": "2.02.32",
        "status": "affected"
      },
      {
        "version": "2.02.33",
        "status": "affected"
      },
      {
        "version": "2.02.34",
        "status": "affected"
      },
      {
        "version": "2.02.35",
        "status": "affected"
      },
      {
        "version": "2.02.36",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/xkalami-Tta0/CVE/blob/main/DocSys/%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E5%88%A0%E9%99%A4.md

12 Oct 2025 08:02Current

CVSS 45.3

CVSS 3.15.4

CVSS 35.4

CVSS 25.5

EPSS0.00723

CWE-22