CVE-2025-7470 | Campcodes Sales and Inventory System 1.0 /pages/product_add.php image unrestricted upload

Inserito da Angelo Barbosa | Lug 11, 2025 | CVE

A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been classified as critical. Affected is an unknown function of the file /pages/product_add.php. The manipulation of the argument image leads to unrestricted upload.

This vulnerability is traded as CVE-2025-7470. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-7470 | Campcodes Sales and Inventory System 1.0 /pages/product_add.php image unrestricted upload

Post correlati

CVE-2024-51425 | Ethereum 1.12.2 WaterToken Contract permission

CVE-2024-5864 | Easy Affiliate Links Plugin up to 3.7.3 on WordPress Setting authorization

CVE-2024-49337 | IBM OpenPages with Watson 8.3/9.0 Email Notification text cross site scripting

CVE-2024-52419 | Clipboard Team Copy Anything to Clipboard Plugin up to 4.0.3 on WordPress cross site scripting