ГлавнаяУязвимости → CVE-2025-10425
7.3высокая

CVE-2025-10425

Описание

A vulnerability was identified in 1000projects Online Student Project Report Submission and Evaluation System 1.0. The impacted element is an unknown function of the file /admin/controller/student_controller.php. Such manipulation of the argument new_image leads to unrestricted upload. The attack may be performed from remote. The exploit is publicly available and might be used.

Затрагиваемое ПО
1000projects Online student project report submission and evaluation system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/lan041221/cvec/issues/23https://vuldb.com/?ctiid.323859https://vuldb.com/?id.323859https://vuldb.com/?submit.647175https://vuldb.com/?submit.647177