CVE-2025-5299 – SourceCodester Client Database Management System Unrestricted File Upload Vulnerability

May 28, 2025

CVE ID : CVE-2025-5299

Published : May 28, 2025, 12:15 p.m. | 1 hour, 22 minutes ago

Description : A vulnerability was found in SourceCodester Client Database Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /user_order_customer_update.php. The manipulation of the argument uploaded_file_cancelled leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5298 – Campcodes Online Hospital Management System SQL Injection Vulnerability

Next Article CVE-2025-5297 – SourceCodester Computer Store System Stack-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-4442 – D-Link DIR-605L Remote Buffer Overflow Vulnerability

May 9, 2025

CVE ID : CVE-2025-4442

Published : May 9, 2025, 12:15 a.m. | 3 hours, 23 minutes ago

Description : A vulnerability was found in D-Link DIR-605L 2.13B01. It has been declared as critical. This vulnerability affects the function formSetWAN_Wizard55. The manipulation of the argument curTime leads to buffer overflow. The attack can be initiated remotely. The vendor was contacted early about this disclosure. This vulnerability only affects products that are no longer supported by the maintainer.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

CodeSOD: Adding to the Argument

Cloudsmith launches ML Model Registry to provide a single source of truth for AI models and datasets

Kong Acquires OpenMeter to Unlock AI and API Monetization for the Agentic Era

I asked AI to modify mission-critical code, and what happened next haunts me

Why you should delete your browser extensions right now – or do this to stay safe

Dolby Vision 2 comes with big upgrades – here’s which TVs get them first

This one small feature makes this travel charger my favorite for business trips

Laracon AU 2025 Talk Titles Revealed

Laracon AU 2025 Talk Titles Revealed

Stop Writing Bad Controllers: Laravel Custom Collections Transform Your Code

Handle ownership relationships between Eloquent models with Laravel Ownable

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-5299 – SourceCodester Client Database Management System Unrestricted File Upload Vulnerability

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

I tested Samsung’s QD-OLED 4K monitor for gaming and work – and it was equally practical

CVE-2025-49597 – Apache Goodbye CSV Remote Code Execution

CVE-2025-37106 – HPE AutoPass License Server Authentication Bypass Information Disclosure

Figma AI Tools

CVE-2025-4442 – D-Link DIR-605L Remote Buffer Overflow Vulnerability

Reevaluating SSEs: A Technical Gap Analysis of Last-Mile Protection

The 13 best early Prime Day 2025 deals under $25

CVE-2025-23092 – Mitel OpenScape Accounting Path Traversal Vulnerability

CVE-2025-5299 – SourceCodester Client Database Management System Unrestricted File Upload Vulnerability

Related Posts