CNNVD-202507-1167 Information

CNNVD ID

CNNVD-202507-1167

Related CVE

CVE-2025-7190

• CNNVD Published: 2025-07-08

Description (Chinese)

Code-Projects Library Management System是Code-Projects开源的一个图书馆管理系统。 Code-Projects Library Management System 2.0版本存在代码问题漏洞，该漏洞源于文件/admin/student_edit_photo.php中参数photo操作不当，可能导致任意文件上传。

Description (English)

Code-Projects Library Management Systems is a library management system that is open to Code-Projects. Code-based loophole in version 2.0 of Code-Projects Library Management System stems from the inappropriate operation of the parameters photo in the file/admin/student edit photo.php, which may lead to the uploading of any document.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Code-Projects

Published

2025-07-08

Last Modified

2026-02-24

References

https://vuldb.com/?submit.607202 https://code-projects.org/ https://github.com/y2xsec324/cve/issues/11 https://vuldb.com/?id.315129 https://vuldb.com/?ctiid.315129 https://access.redhat.com/security/cve/cve-2025-7190