CVE-2025-14641

CVSS v3.1

7.2

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions code-projects Computer Laboratory System version 1.0

Description A flaw exists in the processing of the

admin/admin pic.php

file. Manipulation of the

image

argument allows for unrestricted file upload, potentially enabling remote attacks. The exploit for this issue has been published.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Unrestricted File Upload

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2025-14641

Computer Laboratory System