TenderDocTransfer Arbitrary File Delete/Copy via Path Traversal (CVE-2025-13282/13283)

From the webpage screenshot, the following key vulnerability information can be obtained: TVN ID: - TVN-202511009 CVE ID: - CVE-2025-13282 - CVE-2025-13283 CVSS: - CVE-2025-13282: 8.1 (High) CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H - CVE-2025-13283: 7.1 (High) CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L Affected Products: - TenderDocTransfer before version 0.41.159 Description: - CVE-2025-13282: Arbitrary file deletion vulnerability. The TenderDocTransfer application sets up a simple local network server and provides APIs for communication with target websites. Due to the lack of CSRF protection in the APIs, unauthorized remote attackers can exploit these APIs via phishing. Additionally, one of the APIs contains an absolute path traversal vulnerability, allowing attackers to delete arbitrary files on the user's system. - CVE-2025-13283: Arbitrary file copy and paste vulnerability. The TenderDocTransfer application sets up a simple local network server and provides APIs for communication with target websites. Due to the lack of CSRF protection in the APIs, unauthorized remote attackers can exploit these APIs via phishing. Furthermore, one of the APIs contains an absolute path traversal vulnerability, enabling attackers to copy any file on the user's system and paste it to any path, posing risks of information leakage or consuming disk space by copying large numbers of files. Solution: - Upgrade to version 0.41.159 or later. Credit: - Zhao Weiheng (NTNU) Public Date: - 2025-11-17 Link: - CVE-2025-13282 - CVE-2025-13283

Goal Reached Thanks to every supporter — we hit 100%!

TenderDocTransfer Arbitrary File Delete/Copy via Path Traversal (CVE-2025-13282/13283)