CVE-2025-7755

Medium CVSS: 5.3

A vulnerability was found in code-projects Online Ordering System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/edit_product.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Vendor

Online Ordering System Project

Product

Online Ordering System

CWE

CWE-284

Yayın Tarihi

2025-07-17 21:15:27

Güncelleme

2025-07-30 15:48:15

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-284 Online Ordering System MEDIUM Online Ordering System Project 2025

Referanslar

https://code-projects.org/ https://github.com/AlbaDove/cve/issues/4 https://vuldb.com/?ctiid.316745 https://vuldb.com/?id.316745 https://vuldb.com/?submit.615552

Benzer Kayıtlar

Medium

CVE-2025-14250

A weakness has been identified in code-projects Online Ordering System 1.0. The impacted element is an unknown function…

Medium

CVE-2025-14251

A security vulnerability has been detected in code-projects Online Ordering System 1.0. This affects an unknown function…

Medium

CVE-2025-14249

A security flaw has been discovered in code-projects Online Ordering System 1.0. The affected element is an unknown func…

Medium

CVE-2025-8256

A vulnerability classified as critical has been found in code-projects Online Ordering System 1.0. Affected is an unknow…

Medium

CVE-2025-8248

A vulnerability classified as critical was found in code-projects Online Ordering System 1.0. This vulnerability affects…

Medium

CVE-2025-8236

A vulnerability was found in code-projects Online Ordering System 1.0. It has been declared as critical. This vulnerabil…