CNNVD-202509-2668 Information

CNNVD ID

CNNVD-202509-2668

Related CVE

CVE-2025-10616

• CNNVD Published: 2025-09-17

Description (Chinese)

itsourcecode E-Commerce Website是itsourcecode开源的一个电子商务网站。 itsourcecode E-Commerce Website 1.0版本存在代码问题漏洞，该漏洞源于文件/admin/users.php中存在无限制上传功能，可能导致远程攻击。

Description (English)

Its sourcecode E-Commerce Website is an open-source e-commerce website. Its sourcecodecode E-Commerce Website 1.0 has a code problem loophole that stems from the unlimited upload function in the document/admin/user.php, which could lead to a remote attack.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

itsourcecode

Published

2025-09-17

Last Modified

2026-02-24

References

https://github.com/yihaofuweng/cve/issues/24 https://itsourcecode.com/ https://vuldb.com/?ctiid.324643 https://vuldb.com/?id.324643 https://vuldb.com/?submit.649912