CNNVD-202512-2606 Information

CNNVD ID

CNNVD-202512-2606

Related CVE

CVE-2025-14642

• CNNVD Published: 2025-12-14

Description (Chinese)

Code-Projects Computer Laboratory System是Code-Projects开源的一个计算机实验室系统。 Code-Projects Computer Laboratory System 1.0版本存在代码问题漏洞，该漏洞源于对文件technical_staff_pic.php中参数image的错误操作，可能导致任意文件上传。

Description (English)

The Code-Project Company Systems is a computer laboratory system for the open source of Code-Projects. There is a code problem loophole in version 1.0 of Code-Project Computer System, which results from an error in the parameter image in document Technic staff pic.php, which may lead to any upload.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Code-Projects

Published

2025-12-14

Last Modified

2026-02-24

References

https://code-projects.org/ https://vuldb.com/?submit.707866 https://vuldb.com/?id.336375 https://vuldb.com/?ctiid.336375 https://github.com/Yohane-Mashiro/cve/blob/main/upload%204.md https://access.redhat.com/security/cve/cve-2025-14642