📦 Pwndoc

Name: Pwndoc
Author: Pwndoc Project

by Pwndoc Project

🔍 What is Pwndoc?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-55602

HIGH CVSS 7.6 Dec 10, 2024

This vulnerability in PwnDoc allows authenticated users with template update/download permissions to perform path traversal attacks by injecting '../' sequences into file extension properties. This en...

CVE-2025-27410

MEDIUM CVSS 6.5 Feb 28, 2025

CVE-2025-27410 is a path traversal vulnerability in PwnDoc's backup restore functionality that allows authenticated administrators to overwrite arbitrary files on the system. By overwriting JavaScript...

CVE-2025-23044

MEDIUM CVSS 6.8 Jan 20, 2025

PwnDoc lacks CSRF protection, allowing attackers to perform actions on behalf of logged-in users without their consent. This affects all PwnDoc instances with default configurations where users are au...

CVE-2024-55653

MEDIUM CVSS 6.5 Dec 10, 2024

This vulnerability in PwnDoc allows authenticated users to crash the backend server by triggering an unhandled promise rejection during audit operations. This causes the entire application to become u...