Back to Explorer

CVE-2025-15404

PUBLISHED
1/1/2026 1af790b2-7ee1-4545-860a-a788eba489b5

Technical Description

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /save_file.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.

Affected Products

campcodes
School File Management System
1.0

References

https://vuldb.com/?id.339324
VDB-339324 | campcodes School File Management System save_file.php unrestricted upload
https://vuldb.com/?ctiid.339324
VDB-339324 | CTI Indicators (IOB, IOC, TTP, IOA)
https://vuldb.com/?submit.728102
Submit #728102 | campcodes School File Management System V1.0 Unrestricted Upload
https://github.com/LaneyYu/cve/issues/7
External Link
https://www.campcodes.com/
External Link

Impact Analysis

Attack Vector Network
Attack Complexity Low
Privileges Required None