Login Sign Up

CVE-2025-0335

6.3 MEDIUM

📋 TL;DR

This vulnerability allows attackers to upload arbitrary files without restrictions through the Change Image Handler component in Online Bike Rental System 1.0. This could lead to remote code execution, data theft, or system compromise. All users running the vulnerable version are affected.

💻 Affected Systems

Products:
  • Online Bike Rental System
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the Change Image Handler component specifically, but other endpoints may also be vulnerable.

📦 What is this software?

Online Bike Rental System by Fabian

View all CVEs affecting Online Bike Rental System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise via webshell upload leading to remote code execution, data exfiltration, and lateral movement within the network.

🟠

Likely Case

Attackers upload malicious files (webshells, malware) to gain unauthorized access, deface websites, or steal sensitive data.

🟢

If Mitigated

File uploads are blocked or properly validated, limiting impact to denial of service or minor data exposure.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details are publicly available on GitHub, making this easy to weaponize.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available or implementing workarounds.

🔧 Temporary Workarounds

Implement File Upload Restrictions

all

Restrict file uploads to specific extensions (e.g., .jpg, .png) and validate file types server-side.

Disable Change Image Handler

all

Temporarily disable or block access to the vulnerable Change Image Handler endpoint.

🧯 If You Can't Patch

  • Implement a web application firewall (WAF) with rules to block malicious file uploads.
  • Isolate the system from the internet and restrict access to trusted networks only.

🔍 How to Verify

Check if Vulnerable:

Attempt to upload a non-image file (e.g., .php, .exe) via the Change Image Handler. If successful, the system is vulnerable.

Check Version:

Check the system's version in the admin panel or configuration files.

Verify Fix Applied:

Test file uploads with restricted extensions; malicious files should be rejected.

📡 Detection & Monitoring

Log Indicators:

  • Unusual file uploads (non-image extensions) to /change_image_handler or similar endpoints
  • Large or unexpected files in upload directories

Network Indicators:

  • HTTP POST requests with file uploads to vulnerable endpoints
  • Traffic spikes to upload directories

SIEM Query:

source="web_logs" AND (uri_path="/change_image_handler" OR uri_path CONTAINS "upload") AND file_extension NOT IN ("jpg", "png", "gif")

📊 Metadata

CVE ID: CVE-2025-0335
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-284
EPSS Score: 0.17% exploit probability (38.7th percentile)
Published: January 9, 2025
Last Updated: October 23, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-0335, you might also want to check these:

CVE-2021-34795 10.0

This critical vulnerability in Cisco Catalyst PON Series Switches ONT web management interface allow...

Same vulnerability type (CWE-284)
CVE-2021-40113 10.0

Multiple vulnerabilities in Cisco Catalyst PON Series Switches ONT web management interface allow un...

Same vulnerability type (CWE-284)
CVE-2026-21636 10.0

A critical vulnerability in Node.js v25's experimental permission model allows attacker-controlled i...

Same vulnerability type (CWE-284)