2 matches found
CVE-2025-3765
A vulnerability, which was classified as critical, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack may be...
CVE-2025-3765
CVE-2025-3765 affects SourceCodester Web-based Pharmacy Product Management System 1.0. The issue stems from insufficient validation of the Avatar parameter in /edit-photo.php, allowing unrestricted file upload and enabling remote exploitation. Public disclosures exist, indicating an exploit is av...