{"id":7805,"date":"2025-07-08T10:12:17","date_gmt":"2025-07-08T10:12:17","guid":{"rendered":"http:\/\/localhost\/?p=7805"},"modified":"2025-07-08T10:12:17","modified_gmt":"2025-07-08T10:12:17","slug":"code-projects-staff-audit-system-testphp-unrestricted-upload","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=7805","title":{"rendered":"code-projects Staff Audit System test.php unrestricted upload"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\ncode-projects Staff Audit System test.php unrestricted upload<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-08T14:02:05.702Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-08T14:02:05.702Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
Product<\/th>\nStaff Audit System<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n5.3 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:L\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n\n
AI Description<\/th>\nA critical vulnerability in code-projects Staff Audit System 1.0 allows unrestricted file uploads via the test.php file. This could enable remote attackers to upload malicious files, potentially leading to code execution. The issue has been publicly disclosed.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\ncode-projects<\/td>\n<\/tr>\n
AI Product<\/th>\nStaff Audit System<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n
AI Score<\/th>\n5.3<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n