CNNVD-202511-777 Information
CNNVD ID
CNNVD-202511-777
Related CVE
- CNNVD Published: 2025-11-07
Description (Chinese)
Projectworlds Online Notes Sharing Platform是印度Projectworlds公司的一个在线笔记共享平台。 Projectworlds Online Notes Sharing Platform 1.0版本存在安全漏洞,该漏洞源于对文件/dashboard/userprofile.php中参数image的错误操作,可能导致任意文件上传。
Description (English)
Projectworlds Online Notes Sharing Platform is an online desk-sharing platform for Indian Projectworlds. Projectworlds Online Notes Shareing Platform 1.0 contains a security loophole, which stems from an error in the application of the parameter image in the file/dashboard/userprofile.php, which may result in the uploading of any file.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Projectworlds
Published
2025-11-07
Last Modified
2026-02-24
References
https://github.com/K1nakoo/cve/blob/main/tmp74/report.md https://vuldb.com/?ctiid.331509 https://vuldb.com/?id.331509 https://vuldb.com/?submit.679802 https://access.redhat.com/security/cve/cve-2025-12862
Share on: