CVE 9.8 CRITICAL

CVE-2025-69992_CVE-2025-69992

January 14, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the server without identity authentication.

AI Analysis

File Upload Vulnerability via upload.php, enabling the upload of files of any format to the server without identity authentication.

Basic Information

ID CVE-2025-69992

Source mitre

Published Jan 13, 2026 at 00:00

Modified Jan 14, 2026 at 14:47

Affected Product

Vendor phpgurukul

Product phpgurukul News Portal Project

Version V4.1

Affected Versions n/a n/a n/a

CWE Classification

CWE-125

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor phpgurukul

Product News Portal Project

Version V4.1

References

github.com /Y4y17/CVE/blob/main/News%20Portal%20Project/File%20upload%20vulnerability.md

{
    "lastseen": "",
    "description": "phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables the upload of files of any format to the server without identity authentication.",
    "published": "2026-01-13T00:00:00.000Z",
    "modified": "2026-01-14T14:47:29.156Z",
    "type": "cve",
    "title": "CVE-2025-69992",
    "source": "mitre",
    "references": "https://github.com/Y4y17/CVE/blob/main/News%20Portal%20Project/File%20upload%20vulnerability.md",
    "id": "CVE-2025-69992",
    "bulletinFamily": "",
    "cwe": [
        "CWE-125"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "phpgurukul News Portal Project",
    "version": "V4.1",
    "vendor": "phpgurukul",
    "ai_description": "File Upload Vulnerability via upload.php, enabling the upload of files of any format to the server without identity authentication.",
    "ai_severity": "Critical",
    "ai_vendor": "phpgurukul",
    "ai_product": "News Portal Project",
    "ai_version": "V4.1",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply