CVE-2025-29708

Critical CVSS: 9.8

SourceCodester Company Website CMS 1.0 contains a file upload vulnerability via the "Create Services" file /dashboard/Services.

Vendor

Product

CWE

Yayın Tarihi

2025-04-16 21:15:47

Güncelleme

2025-04-23 16:33:51

Source Identifier

cve@mitre.org

KEV Date Added

CWE-73 Company Website Cms CRITICAL Torrahclef 2025

https://github.com/fupanc-w1n/fupanc/blob/main/php/CVE-2025-29708.md https://github.com/fupanc-w1n/fupanc/blob/main/php/Company%20Website%20CMS1.md

Medium

CVE-2025-13561

A vulnerability was determined in SourceCodester Company Website CMS 1.0. This vulnerability affects unknown code of the…

Medium

CVE-2025-13560

A vulnerability was found in SourceCodester Company Website CMS 1.0. This affects an unknown part of the file /admin/res…

Critical

CVE-2025-29709

SourceCodester Company Website CMS 1.0 has a File upload vulnerability via the "Create portfolio" file /dashboard/portfo…

Medium

CVE-2025-29710

SourceCodester Company Website CMS 1.0 is vulnerable to Cross Site Scripting (XSS) via /dashboard/Services.