CVE-2025-2606 in SourceCodester Best Church Management Software情報

要約 (英語)

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/soulwinning_crud.php. The manipulation of the argument photo/photo1 leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

公開

2025年03月21日

エントリ

VulDB provides additional information and datapoints for this CVE:

識別子	脆弱性	CWE	悪用可	対策	CVE
300589	SourceCodester Best Church Management Software soulwinning_crud.php 特権昇格	434	概念実証	未定義	CVE-2025-2606

説明

CPE

CWE

CVSS

エクスプロイト

履歴

差分

リンクする

脅威インテリジェンス

API JSON

API XML

API CSV

◂ 前概要次 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!