CVE-2025-10763

A vulnerability was determined in academico-sis academico up to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab. Affected by this issue is some unknown functionality of the file /edit-photo of the component Profile Picture Handler. This manipulation causes unrestricted upload. The attack is possible to ...

CVE-2025-10763

A vulnerability was determined in academico-sis academico up to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab. Affected by this issue is some unknown functionality of the file /edit-photo of the component Profile Picture Handler. This manipulation causes unrestricted upload. The attack is possible to ...

CVE-2025-10763 academico-sis academico Profile Picture edit-photo unrestricted upload

A vulnerability was determined in academico-sis academico up to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab. Affected by this issue is some unknown functionality of the file /edit-photo of the component Profile Picture Handler. This manipulation causes unrestricted upload. The attack is possible to ...

CVE-2025-10763

CVE-2025-10763 affects Academico-sis (Profile Picture Handler, /edit-photo). Multiple connected documents confirm an unrestricted upload vulnerability in that endpoint, enabling remote abuse due to missing upload restrictions. The issue is tied to the Profile Picture Handler component and is expl...

CVE-2025-10763 academico-sis academico Profile Picture edit-photo unrestricted upload

A vulnerability was determined in academico-sis academico up to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab. Affected by this issue is some unknown functionality of the file /edit-photo of the component Profile Picture Handler. This manipulation causes unrestricted upload. The attack is possible to ...

PT-2025-38658

Name of the Vulnerable Software and Affected Versions academico-sis versions prior to d9a9e2636fbf7e5845ee086bcb03ca62faceb6ab Description A vulnerability exists in academico-sis related to the Profile Picture Handler component. The issue involves unrestricted upload via the /edit-photo file. Thi...

Exploit for CVE-2025-51046

CVE-2025-51046 - Remote File Upload Vulnerability in SourceCod...

SourceCodester Online Student Clearance System 安全漏洞

SourceCodester Online Student Clearance System is a SourceCodester open source online student management system. A security vulnerability exists in SourceCodester Online Student Clearance System version 1.0, which originates from an unrestricted upload due to the userImage action in the parameter...

CVE-2025-3765

A vulnerability, which was classified as critical, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack may be...

SourceCodester Web-based Pharmacy Product Management System 代码问题漏洞

SourceCodester Web-based Pharmacy Product Management System is a SourceCodester open source Web-based pharmacy product management system. A code issue vulnerability exists in version 1.0 of the SourceCodester Web-based Pharmacy Product Management System, which stems from insufficient validation o...

Library System 安全漏洞

Library System is a library management system by nurhodelta17 individual developer. A security vulnerability exists in Library System version V1.0. A remote attacker can exploit this vulnerability to execute arbitrary code via the FAILE variable in the Studenteditphoto.php component...

PT-2024-25190 · Unknown · Library System

Name of the Vulnerable Software and Affected Versions: Library System version V1.0 Description: An issue in the Library System allows a remote attacker to execute arbitrary code via the FAILE variable in the student edit photo.php component. Recommendations: For Library System version V1.0,...

CVE-2024-4500

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Employee/edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack can be initiated remotely...

Prison Management System 代码问题漏洞

Prison Management System is a prison management system by the individual developer Carlo Montero. A code issue vulnerability exists in SourceCodester Prison Management System version 1.0, which stems from the parameter userImage in the file /Employee/edit-photo.php that can lead to unrestricted...

CVE-2024-3436

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Admin/edit-photo.php of the component Avatar Handler. The manipulation of the argument avatar leads to unrestricted upload. The attack c...

PT-2024-20423 · Unknown · Employee Management System

Name of the Vulnerable Software and Affected Versions: Employee Management System version 1.0 Description: The issue allows a remote attacker to execute arbitrary code via the "edit-photo.php" component. This is due to an Unrestricted File Upload vulnerability. Recommendations: For Employee...

CVE-2024-1008

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file edit-photo.php of the component Profile Page. The manipulation leads to unrestricted upload. The attack can be...

CVE-2024-1008

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file edit-photo.php of the component Profile Page. The manipulation leads to unrestricted upload. The attack can be...

SourceCodester Employee Management System Code Issue Vulnerability

SourceCodester Employee Management System is a php-based website builder for employee performance management from SourceCodester. A code issue exists in version 1.0 of the SourceCodester Employee Management System, which is caused by an unrestricted file upload in edit-photo.php...

PT-2024-16013 · Sourcecodester · Sourcecodester Employee Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Employee Management System version 1.0 Description: A critical issue was found in the Profile Page component, specifically in the file edit-photo.php, allowing for unrestricted upload. This can be exploited remotely...