CVE-2025-5059 | Campcodes Online Shopping Portal 1.0 edit-subcategory.php productimage1/productimage2/productimage3 unrestricted upload

Inserito da Angelo Barbosa | Mag 21, 2025 | CVE

A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument productimage1/productimage2/productimage3 leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2025-5059. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-5059 | Campcodes Online Shopping Portal 1.0 edit-subcategory.php productimage1/productimage2/productimage3 unrestricted upload

Post correlati

CVE-2023-24010 | eProsima DDS PKCS7_verify signature verification

CVE-2024-3303 | GitLab Enterprise Edition up to 17.6.4/17.7.3/17.8.1 information disclosure

CVE-2024-24935 | WpSimpleTools Basic Log Viewer Plugin up to 1.0.4 on WordPress cross-site request forgery

CVE-2025-1491 | teastudiopl WP Posts Carousel Plugin up to 1.3.7 on WordPress auto_play_timeout cross site scripting