CNNVD-202510-1053 Information

Oct 07, 2025 cve

CNNVD ID

CNNVD-202510-1053

CVE-2025-11398

CNNVD Published: 2025-10-07

Description (Chinese)

SourceCodester Hotel and Lodge Management System是SourceCodester开源的一套酒店和旅馆管理系统。 SourceCodester Hotel and Lodge Management System 1.0版本存在代码问题漏洞，该漏洞源于对文件/profile.php中参数image的错误操作，可能导致任意文件上传。

Description (English)

ourceCodesterHotel and Lodge Management System is the open-source hotel and hotel management system ofourceCodester. SourceCodester Hotel and Lodge Management System 1.0 has a code problem loophole, which stems from an error in the way in which the parameter image in the document/profile.php may be uploaded.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

SourceCodester

Published

2025-10-07

Last Modified

2026-02-24

References

https://github.com/TThuyyy/cve1/issues/7 https://vuldb.com/?ctiid.327335 https://vuldb.com/?id.327335 https://vuldb.com/?submit.665038 https://www.sourcecodester.com/ https://access.redhat.com/security/cve/cve-2025-11398

Share on: