CVE-2025-3855 – CodeCanyon RISE Ultimate Project Manager File Inclusion Vulnerability

April 21, 2025

CVE ID : CVE-2025-3855

Published : April 22, 2025, 1:15 a.m. | 1 hour, 21 minutes ago

Description : A vulnerability was found in CodeCanyon RISE Ultimate Project Manager 3.8.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php/team_members/save_profile_image/ of the component Profile Picture Handler. The manipulation of the argument profile_image_file leads to improper control of resource identifiers. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3850 – YXJ2018 SpringBoot-Vue-OnlineExam Remote Authentication Bypass Vulnerability

Next Article CVE-2024-58250 – ppp Passprompt Privilege Escalation Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

Bethesda teases Oblivion Remastered, with a full announcement for the legendary Elder Scrolls title coming this week

Who knew a controller could make THIS much difference? I tested a new mobile controller for Xbox Cloud Gaming and was pleasantly surprised.

Clair Obscur: Expedition 33 PC system requirements and specs — Can you run this turn-based RPG adventure?

Community News: Latest PECL Releases (03.11.2025)

Community News: Latest PECL Releases (03.11.2025)

A Fan Portal for The Elder Scrolls IV: Oblivion Remake

Coveo Recognizes Perficient Colleagues as MVPs in 2025

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

I got my hands on the redesigned successor to 2024’s best gaming laptop for most people — I’m confident that I’m going to love it, but there is ONE downside

Bethesda teases Oblivion Remastered, with a full announcement for the legendary Elder Scrolls title coming this week

Who knew a controller could make THIS much difference? I tested a new mobile controller for Xbox Cloud Gaming and was pleasantly surprised.

CVE-2025-3855 – CodeCanyon RISE Ultimate Project Manager File Inclusion Vulnerability

April 2025 Patch Tuesday: One Zero-Day and 11 Critical Vulnerabilities Among 121 CVEs

Kubernetes IngressNightmare Vulnerabilities: What You Need to Know

This AI Paper Introduces an LLM+FOON Framework: A Graph-Validated Approach for Robotic Cooking Task Planning from Video Instructions

Anthropic CEO predicts a “bipolar” world with China holding the competitive advantage over the US with next-gen AI systems and a global lead in military apps

Understanding Matching Rules in Salesforce

RAGEval: An AI Framework for Automatically Generating Evaluation Datasets to Evaluate the Knowledge Usage Ability of Different LLMs in Different Scenarios

Who knew a controller could make THIS much difference? I tested a new mobile controller for Xbox Cloud Gaming and was pleasantly surprised.

Unboxing the Future: Must-Have Gadgets for 2024

PrimalJS – Release 0.31: new hot reload, projections and sorting in stores, new router

Microsoft AI Researchers Introduce Advanced Low-Bit Quantization Techniques to Enable Efficient LLM Deployment on Edge Devices without High Computational Costs

CVE-2025-3855 – CodeCanyon RISE Ultimate Project Manager File Inclusion Vulnerability

Related Posts