PT-2025-36435 · Sourcecodester · Pet Grooming Management
111Ctx
·
Published
2025-09-08
·
Updated
2025-09-08
·
CVE-2025-10083
111Ctx
·
Published
2025-09-08
·
Updated
2025-09-08
·
CVE-2025-10083
8.8
High
| Base vector | Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
SourceCodester Pet Grooming Management Software version 1.0
Description:
A vulnerability exists in SourceCodester Pet Grooming Management Software that allows for unrestricted file upload through manipulation of an unknown functionality within the `/admin/profile.php` file. This issue can be exploited remotely. The exploit has been publicly disclosed.
Recommendations:
As a temporary workaround, restrict access to the `/admin/profile.php` file to minimize the risk of exploitation.
Exploit
Fix
Improper Access Control
Unrestricted File Upload