CVE-2025-45997 – Sourcecodester Web-based Pharmacy Product Management System File Upload Vulnerability

May 28, 2025

CVE ID : CVE-2025-45997

Published : May 28, 2025, 2:15 p.m. | 2 hours, 45 minutes ago

Description : Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguised as an image by modifying the Content-Type header to image/jpg.

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-40651 – Real Easy Store Reflected Cross-Site Scripting (XSS)

Next Article CVE-2025-5257 – Mautic Unauthenticated Page Preview Information Disclosure

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Look out, Meta Ray-Bans! These AI glasses just raised over $1M in pre-orders in 3 days

Samsung ‘Galaxy Glasses’ powered by Android XR are reportedly on track to be unveiled this month

The M4 iPad Pro is discounted $100 as a last-minute Labor Day deal

Distribution Release: Linux From Scratch 12.4

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Download Transcribe! for Windows

Microsoft Fixes CertificateServicesClient (CertEnroll) Error in Windows 11

CVE-2025-45997 – Sourcecodester Web-based Pharmacy Product Management System File Upload Vulnerability

Hacker suspected of trying to cheat his way into university is arrested in Spain

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

CVE-2025-31198 – Apple macOS Symlink Path Handling Vulnerability

CVE-2025-4915 – PHPGurukul Auto Taxi Stand Management System SQL Injection

CVE-2025-22411 – Cisco SDP Use After Free Remote Code Execution Vulnerability

CVE-2025-8497 – Code-projects Online Medicine Guide SQL Injection Vulnerability

CVE-2025-1763 – GitLab EE Cross-Site Scripting and Content Security Policy Bypass Vulnerability

CVE-2025-8336 – Campcodes Online Recruitment Management System SQL Injection Vulnerability

Windows Recall finally launches, Oblivion Remastered surprise drops, and Drug Dealer Simulator devs speak out

CVE-2025-46275 – Fortinet FortiSwitch Unauthenticated Administrator Account Creation

CVE-2025-45997 – Sourcecodester Web-based Pharmacy Product Management System File Upload Vulnerability

Related Posts