| Title | code-projects online-notes-sharing 1 Arbitrary File Upload |
|---|
| Description | A critical arbitrary file upload vulnerability exists in the online-notes-sharing project (version 10/11). Due to insufficient file type validation and lack of proper restrictions, attackers can upload malicious files to the server. This vulnerability may lead to remote code execution, full server compromise, or data leakage. |
|---|
| Source | ⚠️ https://github.com/yihaofuweng/cve/issues/2 |
|---|
| User | woziziiziz (UID 87194) |
|---|
| Submission | 06/28/2025 15:02 (10 months ago) |
|---|
| Moderation | 07/06/2025 10:18 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 315036 [code-projects Online Note Sharing 1.0 Profile Image userprofile.php image unrestricted upload] |
|---|
| Points | 18 |
|---|