CVE-2025-10428 | SourceCodester Pet Grooming Management Software 1.0 Setting /admin/seo_setting.php website_image unrestricted upload

Inserito da Angelo Barbosa | Set 14, 2025 | CVE

A vulnerability classified as critical has been found in SourceCodester Pet Grooming Management Software 1.0. Affected is an unknown function of the file /admin/seo_setting.php of the component Setting Handler. The manipulation of the argument website_image leads to unrestricted upload.

This vulnerability is documented as CVE-2025-10428. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-10428 | SourceCodester Pet Grooming Management Software 1.0 Setting /admin/seo_setting.php website_image unrestricted upload

Post correlati

CVE-2023-23738 | Brainstorm Force Spectra Plugin up to 2.3.0 on WordPress injection

CVE-2025-27069 | Qualcomm Snapdragon Compute FastConnect 6900 up to WSA8845 DDI Command Call untrusted pointer dereference

CVE-2024-30234 | Wholesale Team WholesaleX Plugin up to 1.3.1 on WordPress authorization

CVE-2024-46329 | Vonets VAP11G-300 3.3.23.6.9 SystemCommand command injection