CVE-2026-7134

A vulnerability was identified in code-projects Online Lot Reservation System 1.0. Affected is an unknown function of the file /edithousepic.php. Such manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit is publicly available and might ...

CVE-2025-15197

A security flaw has been discovered in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. This vulnerability affects unknown code of the file /admin/editposts.php. Performing manipulation of the argument image results in unrestricted upload. The attack may be initiated...

CVE-2025-14642

A vulnerability has been found in code-projects Computer Laboratory System 1.0. Impacted is an unknown function of the file technicalstaffpic.php. Such manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the publi...

EUVD-2025-38264

A vulnerability was identified in projectworlds Online Notes Sharing Platform 1.0. Affected by this issue is some unknown functionality of the file /dashboard/userprofile.php. Such manipulation of the argument image leads to unrestricted upload. The attack may be performed from remote. The exploi...

CVE-2025-12862

A vulnerability was identified in projectworlds Online Notes Sharing Platform 1.0. Affected by this issue is some unknown functionality of the file /dashboard/userprofile.php. Such manipulation of the argument image leads to unrestricted upload. The attack may be performed from remote. The exploi...

PT-2025-40964

Name of the Vulnerable Software and Affected Versions Online Hotel Reservation System version 1.0 Description A flaw exists in Online Hotel Reservation System version 1.0 that allows for unrestricted file upload. This is possible through manipulation of the image argument in the...

PT-2025-40961

Name of the Vulnerable Software and Affected Versions code-projects Online Hotel Reservation System version 1.0 Description A flaw exists in code-projects Online Hotel Reservation System 1.0 that allows for unrestricted file uploads. The issue is located in the file /admin/editpicexec.php within ...

PT-2025-40962

Name of the Vulnerable Software and Affected Versions code-projects Online Hotel Reservation System version 1.0 Description A security issue exists in code-projects Online Hotel Reservation System 1.0. The manipulation of the image argument in the file /admin/addexec.php allows for unrestricted...

PT-2025-37450

Name of the Vulnerable Software and Affected Versions: SourceCodester Pet Grooming Management Software version 1.0 Description: A weakness exists in SourceCodester Pet Grooming Management Software that allows for unrestricted file upload. The issue impacts an unknown function within the...

CVE-2025-9775

A vulnerability was found in RemoteClinic up to 2.0. Impacted is an unknown function of the file /staff/edit-my-profile.php. The manipulation of the argument image results in unrestricted upload. The attack may be launched remotely. The exploit has been made public and could be used...

CVE-2025-9775 RemoteClinic edit-my-profile.php unrestricted upload

A vulnerability was found in RemoteClinic up to 2.0. Impacted is an unknown function of the file /staff/edit-my-profile.php. The manipulation of the argument image results in unrestricted upload. The attack may be launched remotely. The exploit has been made public and could be used...

PT-2025-34203 · Emlog Pro · Emlog Pro

Name of the Vulnerable Software and Affected Versions: Emlog Pro versions through 2.5.18 Description: A security vulnerability has been detected in Emlog Pro. The issue affects an unknown function within the /admin/blogger.php?action=update avatar file. Manipulation of the image argument allows f...

CVE-2025-7477

A vulnerability, which was classified as critical, has been found in code-projects Simple Car Rental System 1.0. This issue affects some unknown processing of the file /admin/addcars.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated remotely. Th...

PT-2025-28159 · Unknown · Code-Projects Online Note Sharing

Name of the Vulnerable Software and Affected Versions: code-projects Online Note Sharing version 1.0 Description: A critical issue has been discovered, affecting an unknown function of the file /dashboard/userprofile.php of the component Profile Image Handler. The manipulation of the image argume...

PT-2024-16685 · Unknown · Codezips Online Institute Management System

Name of the Vulnerable Software and Affected Versions: Codezips Online Institute Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown function of the file /manage website.php. The manipulation of the website image argument leads to unrestricted...

PT-2024-16528 · Unknown · Codezips Free Exam Hall Seating Management System

Name of the Vulnerable Software and Affected Versions: Codezips Free Exam Hall Seating Management System version 1.0 Description: A critical issue has been found in the system, affecting the processing of the file /pages/save user.php. The manipulation of the image argument leads to unrestricted...

PT-2024-38385 · Unknown · Laravel Accounting System

Name of the Vulnerable Software and Affected Versions: Laravel Accounting System version 1.0 Description: A critical issue was found in the Laravel Accounting System, affecting an unknown part of the file app/Http/Controllers/HomeController.php. The manipulation of the image argument leads to...

PT-2024-38226 · Unknown · Alton Management System

Name of the Vulnerable Software and Affected Versions: Alton Management System version 1.0 Description: A critical issue was found in the Alton Management System, affecting some unknown functionality of the file /admin/menu.php of the component Add a Menu. The manipulation of the image argument...

PT-2024-37117 · Itsourcecode · Itsourcecode Bakery Online Ordering System

Name of the Vulnerable Software and Affected Versions: itsourcecode Bakery Online Ordering System version 1.0 Description: A critical issue has been found in the itsourcecode Bakery Online Ordering System, affecting an unknown function of the file /admin/modules/product/controller.php?action=add...