EUVD-2025-203180

A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is n...

CVE-2025-14582

A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing a manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is...

CVE-2025-14582 campcodes Online Student Enrollment System index.php unrestricted upload

A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing a manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is...

CVE-2025-14582

A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an unknown function of the file /admin/index.php?page=user-profile. Performing a manipulation of the argument userphoto results in unrestricted upload. The attack can be initiated remotely. The exploit is...

CVE-2025-14582

CVE-2025-14582 affects CampCodes Online Student Enrollment System v1.0. The vulnerability resides in the file /admin/index.php?page=user-profile, where manipulating the userphoto argument enables unrestricted file upload. Exploitation can be performed remotely and public exploits exist. Multiple ...

CampCodes Online Student Enrollment System 代码问题漏洞

CampCodes Online Student Enrollment System is an online enrollment system from CampCodes Philippines, Inc. A code issue vulnerability exists in CampCodes Online Student Enrollment System version 1.0, which stems from the incorrect manipulation of the parameter userphoto in the file...

(Pwn2Own) Microsoft SharePoint userphoto Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft SharePoint. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the userphoto...

Improper Authorization in dolibarr/dolibarr

Dolibarr allows improper access control issues in the userphoto modulepart. The impact could lead to data exposure as the attached files and documents may contain sensitive information of relevant parties such as contacts, suppliers, invoices, orders, stocks, agenda, accounting and more...

GHSA-4XC7-X2JR-CR74 Improper Authorization in dolibarr/dolibarr

Dolibarr allows improper access control issues in the userphoto modulepart. The impact could lead to data exposure as the attached files and documents may contain sensitive information of relevant parties such as contacts, suppliers, invoices, orders, stocks, agenda, accounting and more...

PT-2022-13396 · Dolibarr · Dolibarr

Name of the Vulnerable Software and Affected Versions: dolibarr/dolibarr versions prior to 16.0 Description: The issue is related to Improper Access Control IDOR in the dolibarr/dolibarr GitHub repository. It affects the userphoto module, potentially leading to data exposure. The exposed data may...

Improper Access Control (IDOR)

Description Dolibarr v14.0.5 allows improper access control issues in the userphoto modulepart. The impact could lead to data exposure as the attached files and documents may contain sensitive information of relevant parties such as contacts, suppliers, invoices, orders, stocks, agenda, accountin...