Security Advisory

CVE-2025-11078

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-27 20:32:06

Last updated 2025-09-29 19:34:20

Assigner VulDB

State PUBLISHED

Description

A vulnerability was identified in itsourcecode Open Source Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/user/controller.php?action=photos. The manipulation of the argument photo leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit is publicly available and might be used.

← Browse all CVEs View on cve.org ↗