2 matches found
CVE-2025-0346
The CVE-2025-0346 entry relates to code-projects Content Management System 1.0, affecting the /admin/publishnews.php Publish News Page. The vulnerability arises from manipulating the image parameter, leading to unrestricted upload. It is exploitable remotely and has been publicly disclosed. A ran...
CVE-2025-15197
The CVE-2025-15197 entry concerns code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. The flaw is in the admin/editposts.php file, where manipulating the image parameter allows an unrestricted upload. This enables remote exploitation as indicated by the public exploit. Affect...