CVE-2025-4468 – SourceCodester Online Student Clearance System File Upload Vulnerability

May 9, 2025

CVE ID : CVE-2025-4468

Published : May 9, 2025, 7:16 a.m. | 4 hours, 51 minutes ago

Description : A vulnerability was found in SourceCodester Online Student Clearance System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4469 – SourceCodester Online Student Clearance System Cross Site Scripting Vulnerability

Next Article CVE-2025-37888 – Intel Mellanox Linux Null Pointer Dereference Vulnerability

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

HoundDog.ai Launches Industry’s First Privacy-by-Design Code Scanner for AI Applications

The Double-Edged Sustainability Sword Of AI In Web Design

How VPNs are helping people evade increased censorship – and much more

Google’s AI Mode can now find restaurant reservations for you – how it works

Best early Labor Day TV deals 2025: Save up to 50% on Samsung, LG, and more

Claude wins high praise from a Supreme Court justice – is AI’s legal losing streak over?

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Quickly Generate Forms based on your Eloquent Models with Laravel Formello

Pest 4 is Released

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

You’ll need standalone Word, PowerPoint, Excel on iOS, as Microsoft 365 app becomes a Copilot wrapper

Microsoft to Move Copilot Previews to iOS While Editing Returns to Office Apps

CVE-2025-4468 – SourceCodester Online Student Clearance System File Upload Vulnerability

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

The AI Fix #51: Divorce by coffee grounds, and why AI robots need your brain

CVE-2025-47858 – Apache HTTP Server Cross-Site Request Forgery

CVE-2025-37988 – Apache Linux Kernel Mount Namespace Locking races

Scoping, Hoisting and Temporal Dead Zone in JavaScript

New PHP-Based Interlock RAT Variant Uses FileFix Delivery Mechanism to Target Multiple Industries

CVE-2025-4249 – PHPGurukul e-Diary Management System SQL Injection

5 warning signs that your phone’s been hacked – and how to fight back

Raspberry Pi 5 Desktop Mini PC: Music Player

CVE-2025-4468 – SourceCodester Online Student Clearance System File Upload Vulnerability

Related Posts