2 matches found
CVE-2025-6872
creationtimestamp| type| source ---|---|--- 2025-06-29 21:54:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19880 2025-06-30 00:34:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsrwrv634p2u...
CVE-2025-6872
CVE-2025-6872 concerns SourceCodester Simple Company Website 1.0. The vulnerability targets the file /classes/SystemSettings.php?f=update_settings, where manipulating the img parameter enables unrestricted file upload. This can be triggered remotely, and multiple sources indicate exploitation is ...