CVE-2025-29709

Name of the Vulnerable Software and Affected Versions SourceCodester Company Website CMS version 1.0

Description The issue is a File upload vulnerability via the "Create portfolio" file /dashboard/portfolio. This vulnerability allows for unauthorized file uploads, potentially leading to security breaches.

Recommendations For SourceCodester Company Website CMS version 1.0, as a temporary workaround, consider disabling the file upload functionality in the "Create portfolio" feature until a patch is available. Restrict access to the /dashboard/portfolio endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.