litsasuk

1 exploit Active since May 2025
CVE-2025-45997 WRITEUP HIGH WRITEUP
Sourcecodester Web-based Pharmacy Product Management System 1.0 - Unrestricted File Upload via Content-Type Spoofing
Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability. An attacker can upload a PHP file disguised as an image by modifying the Content-Type header to image/jpg.
CVSS 8.6