CNNVD-202508-1463 Information

Aug 13, 2025 cve

CNNVD ID

CNNVD-202508-1463

CVE-2012-10056

CNNVD Published: 2025-08-13

Description (Chinese)

Sourceforge PHP Volunteer Management是Sourceforge开源的一个基于PHP的志愿管理系统。 Sourceforge PHP Volunteer Management 1.0.2版本存在安全漏洞，该漏洞源于文档上传功能未限制文件类型，可能导致任意文件上传。

Description (English)

Sourceforge PHP Volunteer Management is a PHP-based voluntary management system. The sourceforge PHP Volunteer Management version 1.0.2 contains a security loophole, which stems from the document upload function that does not limit the type of document, and may lead to any upload.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Sourceforge

Published

2025-08-13

Last Modified

2026-02-24

References

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/ https://sourceforge.net/projects/phpvolunteer/ https://www.exploit-db.com/exploits/18941 https://www.exploit-db.com/exploits/18957 https://www.vulncheck.com/advisories/php-volunteer-management-system-arbitrary-file-upload

Share on: