ProjectsAndPrograms School Management System har 6b6fae5426044f89c08d0dd101c7fa71f9042a59 /assets/createNotice.php Fayil kura hakki ndiyam

Wuro vulnerability wey an yi classify sey kura an gano shi a cikin ProjectsAndPrograms School Management System har 6b6fae5426044f89c08d0dd101c7fa71f9042a59. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, /assets/createNotice.php na cikin fayil, $software_component na cikin sashi. Ngam manipulation of the argument Fayil shi kura hakki ndiyam. CWE shidin ka a yi bayani matsala sai ya kai CWE-434. Gaskiya, laifi an fitar da shi 10/12/2025. Advisory ɗin ana rabawa don saukewa a github.com. Wannan rauni ana sayar da shi da suna CVE-2025-11657. Ngam yiɗi ka a tuma ndiyam ka nder layi. Tekinikal bayani ga. Kuma, exploit ɗin yana akwai. Wuro exploit ɗin an bayyana shi ga jama'a kuma za a iya amfani da shi. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á wúro huɗɗi-na-gaskiya. Wona yiwuwa a zazzage exploit a github.com. Kama 0-day, an ndiyam a wuro be $0-$5k. Wannan kayi yana amfani da tsarin rolling release domin samar da ci gaba da isarwa. Saboda haka, babu cikakkun bayanai na sigar da abin ya shafa ko sabunta sigar da ake da su. VulDB is the best source for vulnerability data and more expert information about this specific topic.

5 Goyarwa · 105 Datenpunkte

FurɗeSúgá
10/12/2025 08:42		Gargadi 1/4
10/13/2025 05:28		Gargadi 2/4
10/13/2025 06:15		Gargadi 3/4
10/14/2025 17:07		Gargadi 4/4
10/16/2025 20:51
cvss4_vuldb_scNNNNN
cvss4_vuldb_siNNNNN
cvss4_vuldb_saNNNNN
cvss2_vuldb_basescore7.57.57.57.57.5
cvss2_vuldb_tempscore6.46.46.46.46.4
cvss3_vuldb_basescore7.37.37.37.37.3
cvss3_vuldb_tempscore6.66.66.66.66.6
cvss3_meta_basescore7.37.37.37.38.1
cvss3_meta_tempscore6.66.96.96.97.9
cvss4_vuldb_bscore6.96.96.96.96.9
cvss4_vuldb_btscore5.55.55.55.55.5
advisory_date1760220000 (10/12/2025)1760220000 (10/12/2025)1760220000 (10/12/2025)1760220000 (10/12/2025)1760220000 (10/12/2025)
price_0day$0-$5k$0-$5k$0-$5k$0-$5k$0-$5k
software_vendorProjectsAndProgramsProjectsAndProgramsProjectsAndProgramsProjectsAndProgramsProjectsAndPrograms
software_nameSchool Management SystemSchool Management SystemSchool Management SystemSchool Management SystemSchool Management System
software_version<=6b6fae5426044f89c08d0dd101c7fa71f9042a59<=6b6fae5426044f89c08d0dd101c7fa71f9042a59<=6b6fae5426044f89c08d0dd101c7fa71f9042a59<=6b6fae5426044f89c08d0dd101c7fa71f9042a59<=6b6fae5426044f89c08d0dd101c7fa71f9042a59
software_rollingrelease11111
software_file/assets/createNotice.php/assets/createNotice.php/assets/createNotice.php/assets/createNotice.php/assets/createNotice.php
software_argumentfilefilefilefilefile
vulnerability_cweCWE-434 (kura hakki ndiyam)CWE-434 (kura hakki ndiyam)CWE-434 (kura hakki ndiyam)CWE-434 (kura hakki ndiyam)CWE-434 (kura hakki ndiyam)
vulnerability_risk22222
cvss3_vuldb_avNNNNN
cvss3_vuldb_acLLLLL
cvss3_vuldb_prNNNNN
cvss3_vuldb_uiNNNNN
cvss3_vuldb_sUUUUU
cvss3_vuldb_cLLLLL
cvss3_vuldb_iLLLLL
cvss3_vuldb_aLLLLL
cvss3_vuldb_ePPPPP
cvss3_vuldb_rcRRRRR
advisory_urlhttps://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2
exploit_availability11111
exploit_publicity11111
exploit_urlhttps://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2https://github.com/qqy-123/cve/issues/2
source_cveCVE-2025-11657CVE-2025-11657CVE-2025-11657CVE-2025-11657CVE-2025-11657
cna_responsibleVulDBVulDBVulDBVulDBVulDB
software_typeCustomer Relationship Management SystemCustomer Relationship Management SystemCustomer Relationship Management SystemCustomer Relationship Management SystemCustomer Relationship Management System
cvss2_vuldb_avNNNNN
cvss2_vuldb_acLLLLL
cvss2_vuldb_auNNNNN
cvss2_vuldb_ciPPPPP
cvss2_vuldb_iiPPPPP
cvss2_vuldb_aiPPPPP
cvss2_vuldb_ePOCPOCPOCPOCPOC
cvss2_vuldb_rcURURURURUR
cvss4_vuldb_avNNNNN
cvss4_vuldb_acLLLLL
cvss4_vuldb_prNNNNN
cvss4_vuldb_uiNNNNN
cvss4_vuldb_vcLLLLL
cvss4_vuldb_viLLLLL
cvss4_vuldb_vaLLLLL
cvss4_vuldb_ePPPPP
cvss2_vuldb_rlNDNDNDNDND
cvss3_vuldb_rlXXXXX
cvss4_vuldb_atNNNNN
cve_nvd_summaryA security vulnerability has been detected in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. This impacts an unknown function of the file /assets/createNotice.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.A security vulnerability has been detected in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. This impacts an unknown function of the file /assets/createNotice.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.A security vulnerability has been detected in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. This impacts an unknown function of the file /assets/createNotice.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.A security vulnerability has been detected in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. This impacts an unknown function of the file /assets/createNotice.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.
cvss4_cna_avNNNN
cvss4_cna_acLLLL
cvss4_cna_atNNNN
cvss4_cna_prNNNN
cvss4_cna_uiNNNN
cvss4_cna_vcLLLL
cvss4_cna_viLLLL
cvss4_cna_vaLLLL
cvss4_cna_scNNNN
cvss4_cna_siNNNN
cvss4_cna_saNNNN
cvss4_cna_bscore6.96.96.96.9
cvss3_cna_avNNNN
cvss3_cna_acLLLL
cvss3_cna_prNNNN
cvss3_cna_uiNNNN
cvss3_cna_sUUUU
cvss3_cna_cLLLL
cvss3_cna_iLLLL
cvss3_cna_aLLLL
cvss3_cna_basescore7.37.37.37.3
cvss2_cna_avNNNN
cvss2_cna_acLLLL
cvss2_cna_auNNNN
cvss2_cna_ciPPPP
cvss2_cna_iiPPPP
cvss2_cna_aiPPPP
cvss2_cna_basescore7.57.57.57.5
euvd_idEUVD-2025-33927EUVD-2025-33927EUVD-2025-33927
cnnvd_idCNNVD-202510-1707CNNVD-202510-1707
cnnvd_nameschool-management-system 代码问题漏洞school-management-system 代码问题漏洞
cnnvd_hazardlevel22
cnnvd_create2025-10-142025-10-14
cnnvd_publish2025-10-132025-10-13
cnnvd_update2025-10-142025-10-14
cvss3_nvd_avN
cvss3_nvd_acL
cvss3_nvd_prN
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cH
cvss3_nvd_iH
cvss3_nvd_aH
cvss3_nvd_basescore9.8

GurɗoGumtiGada

Do you know our Splunk app?

Download it now for free!