CVE-2025-6667 – “Code-Projects Car Rental System Unrestricted File Upload Vulnerability”

June 25, 2025

CVE ID : CVE-2025-6667

Published : June 25, 2025, 10:15 p.m. | 4 hours, 6 minutes ago

Description : A vulnerability was found in code-projects Car Rental System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/add_cars.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6668 – Code-projects Inventory Management System SQL Injection Vulnerability

Next Article CVE-2025-6662 – PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure

Can Good UX Protect Older Users From Digital Scams?

Warp 2.0 evolves terminal experience into an Agentic Development Environment

Qodo launches CLI agent framework

Overture Maps launches GERS, a system of unique IDs for global geospatial entities

Microsoft Copilot is “pretty important” but customers still prefer ChatGPT — “OpenAI has done a tremendous job”

Will you sync your Windows 10 PC data to the cloud for free access to security updates beyond 2025?

Red Hat Enterprise Linux (RHEL) quietly released an official image for WSL — but most of us won’t be able to use it

Sam Altman says ChatGPT has evolved beyond a mere “Google replacement” — with ads potentially coming to users

What Are the PHP Trends in 2025

What Are the PHP Trends in 2025

Real-Time Observability for Node.js – Without Code Changes

Elevating API Automation: Exploring Karate as an Alternative to Rest-Assured

Microsoft Copilot is “pretty important” but customers still prefer ChatGPT — “OpenAI has done a tremendous job”

Microsoft Copilot is “pretty important” but customers still prefer ChatGPT — “OpenAI has done a tremendous job”

Will you sync your Windows 10 PC data to the cloud for free access to security updates beyond 2025?

Red Hat Enterprise Linux (RHEL) quietly released an official image for WSL — but most of us won’t be able to use it

CVE-2025-6667 – “Code-Projects Car Rental System Unrestricted File Upload Vulnerability”

CVE-2025-6659 – PDF-XChange Editor PRC File Parsing Remote Code Execution Vulnerability

CVE-2025-6660 – PDF-XChange Editor GIF File Parsing Remote Code Execution Vulnerability

CVE-2025-28039 – TOTOLINK EX1200T Remote Command Execution Vulnerability

Learn Embedded Systems Firmware Basics – A Handbook for Developers

Empowering Businesses Online: How Globaliweb Is Simplifying Website Creation

Forza Horizon 5 gets special Lamborghini livery celebrating Xbox and PlayStation players together

Vision Foundation Models: Implementation and Business Applications

Streamline personalization development: How automated ML workflows accelerate Amazon Personalize implementation

CVE-2025-28026 – TOTOLINK Router Buffer Overflow Vulnerability

ChatGPT Plus is free for students now – how to grab this deal before finals

CVE-2025-6667 – “Code-Projects Car Rental System Unrestricted File Upload Vulnerability”

Related Posts