ГлавнаяУязвимости → CVE-2025-56295
7.3высокая

CVE-2025-56295

Описание

code-projects Computer Laboratory System 1.0 has a file upload vulnerability. Staff can upload malicious files by uploading PHP backdoor files when modifying personal avatar information and use web shell connection tools to obtain server permissions.

Затрагиваемое ПО
Carmelo Computer laboratory system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
Источники
https://github.com/Chen1-Boop/CVE/blob/main/CVE-2025-56295.mdhttps://github.com/Chen1-Boop/CVE/blob/main/CVE-2025-56295.md