{"id":7718,"date":"2025-07-07T05:46:37","date_gmt":"2025-07-07T05:46:37","guid":{"rendered":"http:\/\/localhost\/?p=7718"},"modified":"2025-07-07T05:46:37","modified_gmt":"2025-07-07T05:46:37","slug":"code-projects-online-note-sharing-profile-image-userprofilephp-unrestricted-upload","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=7718","title":{"rendered":"code-projects Online Note Sharing Profile Image userprofile.php unrestricted upload"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\ncode-projects Online Note Sharing Profile Image userprofile.php unrestricted upload<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-07T10:32:05.464Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-07T10:32:05.464Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
Product<\/th>\nOnline Note Sharing<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n5.3 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA critical vulnerability in code-projects Online Note Sharing 1.0 allows unrestricted file uploads via the profile image handler. This could enable attackers to upload malicious files, potentially leading to remote code execution or other attacks.<\/td>\n<\/tr>\n
AI Severity<\/th>\nHigh<\/td>\n<\/tr>\n
AI Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
AI Product<\/th>\nOnline Note Sharing<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n