CVE-2025-1355

Medium CVSS: 6.9

A vulnerability was found in needyamin Library Card System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /signup.php of the component Add Picture. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Needyamin

Product

Library Card System

CWE

CWE-284

Yayın Tarihi

2025-02-16 17:15:07

Güncelleme

2025-02-25 03:41:32

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-284 Library Card System MEDIUM Needyamin 2025

Referanslar

https://vuldb.com/?ctiid.295963 https://vuldb.com/?id.295963 https://vuldb.com/?submit.496075 https://www.websecurityinsights.my.id/2025/02/library-card-system-shell-by-maloyroyorko.html

Benzer Kayıtlar

Medium

CVE-2025-1356

A vulnerability was found in needyamin Library Card System 1.0. It has been rated as critical. Affected by this issue is…

Medium

CVE-2025-0844

A vulnerability was found in needyamin Library Card System 1.0. It has been declared as problematic. Affected by this vu…

Medium

CVE-2025-0843

A vulnerability was found in needyamin Library Card System 1.0. It has been classified as critical. Affected is an unkno…

Medium

CVE-2025-0842

A vulnerability was found in needyamin Library Card System 1.0 and classified as critical. This issue affects some unkno…

Medium

CVE-2025-0721

A vulnerability classified as problematic has been found in needyamin image_gallery 1.0. This affects the function image…

Medium

CVE-2025-0722

A vulnerability classified as critical was found in needyamin image_gallery 1.0. This vulnerability affects unknown code…