CVE-2025-10424
BaseFortify
Publication date: 2025-09-15
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| 1000projects | online_student_project_report_submission_and_evaluation_system | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-434 | The product allows the upload or transfer of dangerous file types that are automatically processed within its environment. |
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-10424 is a critical unrestricted file upload vulnerability in version 1.0 of the 1000projects Online Student Project Report Submission and Evaluation System. It exists in the file /admin/controller/faculty_controller.php, where the system fails to properly validate uploaded files via the new_image parameter. This lack of validation means attackers can upload arbitrary files, including malicious scripts like PHP shells, without any login or authorization. Exploiting this vulnerability allows attackers to execute arbitrary code on the server remotely, potentially leading to full server compromise. [1, 2, 4]
How can this vulnerability impact me? :
This vulnerability can have severe impacts including unauthorized remote code execution on the server, full system compromise, unauthorized access to sensitive data, data tampering, malware distribution, and denial of service. Attackers can upload and execute malicious files such as PHP shells, which can lead to loss of system integrity, confidentiality, and availability. [1, 2, 4]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by attempting to upload a malicious file (e.g., a PHP shell) to the vulnerable endpoint `/rse/admin/controller/faculty_controller.php` using a multipart/form-data POST request. A common method is to use curl commands to test file upload functionality and verify if arbitrary files can be uploaded and executed. For example, a curl command to upload a PHP shell named `shell.php` containing `<?php phpinfo();?>` can be used to confirm the vulnerability. Additionally, attackers may be located using Google dorking queries such as `inurl:admin/controller/faculty_controller.php` to find vulnerable targets. Monitoring web server logs for suspicious file uploads or execution of unexpected scripts can also help detect exploitation attempts. [1, 3, 4]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include: 1) Implement strict file type validation using MIME type checks, file extension whitelisting, and content inspection to allow only safe file types such as images (.jpg, .png). 2) Enforce file size limits to prevent resource exhaustion or abuse. 3) Store uploaded files outside the web root directory to prevent direct web access and execution. 4) Rename uploaded files with unique, random names to avoid path traversal and filename collisions. 5) Conduct regular security audits of the file upload functionality to detect and fix vulnerabilities promptly. These measures help prevent arbitrary file uploads and reduce the risk of remote code execution and server compromise. [1, 2, 4]