CVE-2025-10425 | 1000projects Online Student Project Report Submission and Evaluation System student_controller.php unrestricted upload

Inserito da Angelo Barbosa | Set 14, 2025 | CVE

A vulnerability labeled as critical has been found in 1000projects Online Student Project Report Submission and Evaluation System 1.0. The impacted element is an unknown function of the file /admin/controller/student_controller.php. Such manipulation of the argument new_image leads to unrestricted upload.

This vulnerability is listed as CVE-2025-10425. The attack may be performed from remote. In addition, an exploit is available.

CVE-2025-10425 | 1000projects Online Student Project Report Submission and Evaluation System student_controller.php unrestricted upload

Post correlati

CVE-2024-33643 | Kailey Lampert Advanced Most Recent Posts Mod Plugin up to 1.6.5.2 on WordPress cross site scripting

CVE-2024-8297 | kitsada8621 Digital Library Management System 1.0 jwt_refresh_token_middleware.go JwtRefreshAuth Authorization neutralization for logs

CVE-2023-42005 | IBM DB2 on Cloud Pak for Data up to 4.8 Kubernetes Pod access control (XFDB-265264)

CVE-2020-26627 | Hospital Management System 4.0 Admin Remark sql injection (ID 176302)