CNNVD-202508-937 Information

CNNVD ID

CNNVD-202508-937

Related CVE

CVE-2025-8859

• CNNVD Published: 2025-08-11

Description (Chinese)

Code-Projects eBlog Site是Code-Projects开源的一个博客网站。 code-projects eBlog Site 1.0版本存在代码问题漏洞，该漏洞源于文件/native/admin/save-slider.php中上传功能未受限制。

Description (English)

Code-Projects eBlog Site is an open-source blog site for Code-Projects. There is a code problem loophole in version 1.0 of code-project eBlog Site, which originates from unlimited uploading in file/native/admin/save-slister.php.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Code-Projects

Published

2025-08-11

Last Modified

2026-02-24

References

https://github.com/unjoke/newvul/issues/1 https://code-projects.org/ https://vuldb.com/?ctiid.319399 https://vuldb.com/?submit.628112 https://vuldb.com/?id.319399 https://access.redhat.com/security/cve/cve-2025-8859