CVE-2025-6667 – “Code-Projects Car Rental System Unrestricted File Upload Vulnerability”

June 25, 2025

CVE ID : CVE-2025-6667

Published : June 25, 2025, 10:15 p.m. | 4 hours, 6 minutes ago

Description : A vulnerability was found in code-projects Car Rental System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/add_cars.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6668 – Code-projects Inventory Management System SQL Injection Vulnerability

Next Article CVE-2025-6662 – PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-6667 – “Code-Projects Car Rental System Unrestricted File Upload Vulnerability”

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Crafting SEO Content That Readers Love

Grab these 7 Xbox games all under $40 — you don’t have long before Amazon Prime Day ends, so act fast

CVE-2025-34030 – Apache sar2html OS Command Injection Vulnerability

Microsoft confirms Windows 11 version 25H2 is coming soon — will install much faster than version 24H2

Building a REACT-Style Agent Using Fireworks AI with LangChain that Fetches Data, Generates BigQuery SQL, and Maintains Conversational Memory

CVE-2025-43268 – Apple macOS Sequoia Root Privilege Escalation

Sam Altman’s ouster from OpenAI was so dramatic that it’s apparently becoming a movie — Will we finally get the full story?

Belgian spacetech EDGX raises €2.3M to bring edge computing to space

CVE-2025-6667 – “Code-Projects Car Rental System Unrestricted File Upload Vulnerability”

Related Posts