CNNVD-202506-3702 Information

CNNVD ID

CNNVD-202506-3702

Related CVE

CVE-2025-6873

• CNNVD Published: 2025-06-29

Description (Chinese)

SourceCodester Simple Company Website是SourceCodester公司的一个简单公司网站。 SourceCodester Simple Company Website 1.0版本存在代码问题漏洞，该漏洞源于文件/classes/Users.php?f=save中参数img的错误操作导致无限制上传。

Description (English)

SourceCodester Simple Company Website is a simple corporate website ofourceCodester. Version 1.0 of SourceCodester Simple Company Website has a code gap, which stems from the error of the img parameter in file/classes/Users.php?f=save resulting in unlimited uploading.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

SourceCodester

Published

2025-06-29

Last Modified

2026-02-24

References

https://github.com/ez-lbz/poc/issues/29 https://vuldb.com/?submit.603645 https://vuldb.com/?ctiid.314345 https://www.sourcecodester.com/ https://vuldb.com/?id.314345 https://access.redhat.com/security/cve/cve-2025-6873