CVE-2025-15199 – This vulnerability allows remote attackers to u... (How to Fix)

Q: What is the severity of CVE-2025-15199?

CVE-2025-15199 has a CVSS score of 6.3 (MEDIUM). This vulnerability allows remote attackers to upload arbitrary files via the image parameter in the userprofile.php file of College Notes Uploading System 1.0. Attackers can potentially upload malicious files like webshells to gain unauthorized access or execute code. All users running the vulnerable version are affected.

📋 TL;DR

This vulnerability allows remote attackers to upload arbitrary files via the image parameter in the userprofile.php file of College Notes Uploading System 1.0. Attackers can potentially upload malicious files like webshells to gain unauthorized access or execute code. All users running the vulnerable version are affected.

💻 Affected Systems

Products:

College Notes Uploading System

Versions: 1.0

Operating Systems: All platforms running PHP

Default Config Vulnerable: ⚠️ Yes

Notes: Affects the /dashboard/userprofile.php endpoint specifically. Any deployment with this file accessible is vulnerable.

📦 What is this software?

College Notes Uploading System by Code Projects

View all CVEs affecting College Notes Uploading System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data theft, or ransomware deployment.

🟠

Likely Case

Webshell upload allowing persistent backdoor access, file manipulation, and lateral movement within the system.

🟢

If Mitigated

Limited impact if file uploads are restricted to authenticated users and file types are strictly validated.

🌐 Internet-Facing: HIGH - Remote exploitation is possible, and public exploit details exist.

🏢 Internal Only: MEDIUM - Internal attackers could exploit this if they have network access to the system.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploit details are publicly disclosed on GitHub. Attack requires access to the upload functionality, which typically requires authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider implementing workarounds or replacing the software.

🔧 Temporary Workarounds

Restrict file uploads

all

Implement server-side validation to only allow specific file types (e.g., .jpg, .png) and check file signatures.

# Example PHP validation snippet:
$allowed_types = ['image/jpeg', 'image/png'];
if (!in_array($_FILES['image']['type'], $allowed_types)) {
    die('Invalid file type');
}

Rename uploaded files

all

Rename uploaded files to random names without extensions or store them outside the web root.

# Example PHP code:
$new_filename = uniqid() . '.tmp';
move_uploaded_file($_FILES['image']['tmp_name'], '/path/outside/webroot/' . $new_filename);

🧯 If You Can't Patch

Disable the userprofile.php upload functionality entirely by removing or restricting access to the file.
Implement a web application firewall (WAF) to block malicious upload attempts and monitor for exploit patterns.

🔍 How to Verify

Check if Vulnerable:

Check if /dashboard/userprofile.php exists and accepts file uploads via the image parameter without proper validation.

Check Version:

Check the software version in the application's admin panel or configuration files.

Verify Fix Applied:

Test uploading a non-image file (e.g., .php, .exe) to verify it's rejected or sanitized.

📡 Detection & Monitoring

Log Indicators:

Unusual file uploads to /dashboard/userprofile.php, especially non-image files or large uploads.
HTTP POST requests with file uploads containing suspicious extensions or content.

Network Indicators:

Traffic spikes to the upload endpoint, anomalous outbound connections post-upload.

SIEM Query:

source="web_logs" AND uri="/dashboard/userprofile.php" AND method="POST" AND (file_extension IN ("php", "exe", "sh") OR content_type NOT IN ("image/jpeg", "image/png"))

📊 Metadata

CVE ID: CVE-2025-15199

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-284

EPSS Score: 0.04% exploit probability (12.9th percentile)

Published: December 29, 2025

Last Updated: January 5, 2026

🔗 References

https://code-projects.org/ Product
https://github.com/jjjjj-zr/jjjjjzr18/issues/1 Broken Link
https://vuldb.com/?ctiid.338586 Permissions Required,VDB Entry
https://vuldb.com/?id.338586 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.724794 Third Party Advisory,VDB Entry
https://github.com/jjjjj-zr/jjjjjzr18/issues/1 Broken Link

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-15199, you might also want to check these: