CVE-2025-9847 | ScriptAndTools Real Estate Management System 1.0 register.php uimage unrestricted upload

Inserito da Angelo Barbosa | Set 2, 2025 | CVE

A vulnerability classified as critical has been found in ScriptAndTools Real Estate Management System 1.0. Impacted is an unknown function of the file register.php. This manipulation of the argument uimage causes unrestricted upload.

This vulnerability is registered as CVE-2025-9847. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2025-9847 | ScriptAndTools Real Estate Management System 1.0 register.php uimage unrestricted upload

Post correlati

CVE-2022-4962 | Apollo 2.0.0/2.0.1 Configuration Center /users improper authorization (Issue 4684)

CVE-2023-45482 | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn get_parentControl_list_Info urls stack-based overflow

CVE-2025-5895 | Metabase 54.10 dom.js parseDataUri redos (ID 57011)

CVE-2024-11861 | EnerSys AMPA up to 22.09 command injection (MNDT-2025-0001)