CVE-2025-8798
BaseFortify
Publication date: 2025-08-10
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| oitcode | samarium | to 0.9.6 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-79 | The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
| CWE-434 | The product allows the upload or transfer of dangerous file types that are automatically processed within its environment. |
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-8798 is a critical vulnerability in the Samarium Business Management System (up to version 0.9.6) that allows an attacker to upload files without any restrictions through the product image upload feature on the Create Product Page (/dashboard/product). This unrestricted file upload can include malicious files such as JavaScript code, which when viewed, executes and can lead to code execution even by unauthenticated users. This vulnerability is classified as CWE-434 (Unrestricted Upload of File with Dangerous Type) and can be exploited remotely without authentication. [1, 2]
How can this vulnerability impact me? :
This vulnerability can severely impact you by allowing attackers to execute arbitrary code remotely on your system through malicious file uploads. It compromises the confidentiality, integrity, and availability of your system by enabling unauthorized code execution, potentially leading to data breaches, system manipulation, or denial of service. Since exploitation requires no authentication and a proof-of-concept is publicly available, the risk of attack is high. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection can focus on monitoring the /dashboard/product endpoint for unusual or unauthorized file upload activity, especially attempts to upload executable or script files. Since the vulnerability allows unrestricted file uploads including malicious JavaScript, inspecting web server logs for POST requests to /dashboard/product with suspicious file types or payloads is recommended. Network intrusion detection systems (NIDS) can be configured to alert on such upload attempts. Specific commands depend on your environment, but examples include using curl to test the upload endpoint or grep to search logs: 1) curl -X POST -F "[email protected]" https://yourserver/dashboard/product 2) grep "/dashboard/product" /var/log/nginx/access.log | grep POST 3) Use web application scanners or vulnerability scanners that support file upload testing. However, no exact commands are provided in the resources. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include disabling or restricting the file upload functionality on the /dashboard/product Create Product Page component to prevent unrestricted uploads. Since no known mitigations or countermeasures have been identified, it is suggested to replace the affected product with an alternative that does not have this vulnerability. Additionally, monitoring for exploit attempts and applying network-level restrictions to limit access to the vulnerable endpoint can help reduce risk until a patch or fix is available. [2]