CVE-2025-5840 | SourceCodester Client Database Management System 1.0 user_update_customer_order.php uploaded_file unrestricted upload

Inserito da Angelo Barbosa | Giu 6, 2025 | CVE

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /user_update_customer_order.php. The manipulation of the argument uploaded_file leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2025-5840. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-5840 | SourceCodester Client Database Management System 1.0 user_update_customer_order.php uploaded_file unrestricted upload

Post correlati

CVE-2024-57903 | Linux Kernel up to 5.15.175/6.1.123/6.6.69/6.12.8 in_atomic stack-based overflow

CVE-2025-26357 | Nozomi Q-Free MaxTime up to 2.11.0 HTTP database.lua path traversal

CVE-2024-36677 | Login as Customer Pro Module 1.2.7 on PrestaShop access control

CVE-2022-48685 | Logpoint up to 7.1.1 clean_secbi_old_logs Local Privilege Escalation