5 matches found
CVE-2025-10209
A security flaw has been discovered in Papermerge DMS up to 3.5.3. This issue affects some unknown processing of the component Authorization Token Handler. Performing manipulation results in improper authorization. The attack can be initiated remotely. The exploit has been released to the public...
CVE-2025-10209 Papermerge DMS Authorization Token improper authorization
A security flaw has been discovered in Papermerge DMS up to 3.5.3. This issue affects some unknown processing of the component Authorization Token Handler. Performing manipulation results in improper authorization. The attack can be initiated remotely. The exploit has been released to the public...
CVE-2025-10209
The CVE-2025-10209 entry concerns Papermerge DMS up to version 3.5.3. The vulnerability is in the Authorization Token Handler component, where manipulation can result in improper authorization. The issue is exploitable remotely, with exploitation information publicly available and a proof-of-conc...
Papermerge DMS 授权问题漏洞
Papermerge DMS is a document management system from Papermerge DMS open source. An authorization issue vulnerability exists in Papermerge DMS 3.5.3 and prior versions, which stems from improper handling of authorization tokens and can lead to unauthorized access...
Cross-site Scripting (XSS) - Generic in ciur/papermerge-js
Description Papermerge is an open source document management system DMS primarily designed for archiving and retrieving your digital documents. Instead of having piles of paper documents all over your desk, office or drawers - you can quickly scan them and configure your scanner to directly uploa...