CVE-2025-60500

HIGH

QDocs Smart School Management System 7.1 - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-60500. PoCs published by H4zaz.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2025-60500, an insecure file upload vulnerability in QDocs Smart School 7.1. It explains the logic flaw allowing authenticated users to bypass file-type restrictions and achieve remote code execution via PHP file uploads.

Description

QDocs Smart School Management System 7.1 allows authenticated users with roles such as "accountant" or "admin" to bypass file type restrictions in the media upload feature by abusing the alternate YouTube URL option. This logic flaw permits uploading of arbitrary PHP files, which are stored in a web-accessible directory.

Exploits (1)

github WRITEUP
by H4zaz · poc
https://github.com/H4zaz/CVE-2025-60500

This repository provides a detailed technical analysis of CVE-2025-60500, an insecure file upload vulnerability in QDocs Smart School 7.1. It explains the logic flaw allowing authenticated users to bypass file-type restrictions and achieve remote code execution via PHP file uploads.

Classification
Writeup 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: QDocs Smart School : School Management System 7.1
Auth required
Prerequisites: Authenticated account with role: accountant/admin/superadmin · Access to the Download Center > Upload Share Content feature
devstral-2 · analyzed May 17, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 7.2
EPSS 0.0044
EPSS Percentile 35.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-434
Status published
Products (1)
qdocs/smart_school 7.1.0
Published Oct 21, 2025
Tracked Since Feb 18, 2026