CVE-2026-10807 mjperpinosa stumasy change_profile_image.php unrestricted upload

🗓️ 04 Jun 2026 12:30:12Reported by VulDBType

CVE-2026-10807: Unrestricted upload via pr_profile_image in change_profile_image.php.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-10807	4 Jun 202612:30	–	attackerkb
Circl	CVE-2026-10807	4 Jun 202614:51	–	circl
CNNVD	stumasy 代码问题漏洞	4 Jun 202600:00	–	cnnvd
CVE	CVE-2026-10807	4 Jun 202612:30	–	cve
EUVD	EUVD-2026-34253	4 Jun 202612:30	–	euvd
NVD	CVE-2026-10807	4 Jun 202614:16	–	nvd
Positive Technologies	PT-2026-46220	4 Jun 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-10807	5 Jun 202619:48	–	redhatcve
Vulnrichment	CVE-2026-10807 mjperpinosa stumasy change_profile_image.php unrestricted upload	4 Jun 202612:30	–	vulnrichment

[
  {
    "vendor": "mjperpinosa",
    "product": "stumasy",
    "versions": [
      {
        "version": "25d695901fbb586bf184b8ba73456d8e5311656c",
        "status": "affected"
      },
      {
        "version": "79c86fce86a09adc6edcbd6d56115fbff14ed538",
        "status": "affected"
      },
      {
        "version": "327d1b0f2915ba79d7ef8ebb74553e987609d9be",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:mjperpinosa:stumasy:*:*:*:*:*:*:*:*"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/submit/831551
vuldb	www.vuldb.com/vuln/368255/cti
vuldb	www.vuldb.com/cve/CVE-2026-10807
vuldb	www.vuldb.com/vuln/368255
github	www.github.com/mjperpinosa/stumasy/
github	www.github.com/mjperpinosa/stumasy/issues/3

04 Jun 2026 12:30Current

CVSS 45.3

CVSS 3.16.3

CVSS 36.3

CVSS 26.5

EPSS0.00209