CVE-2025-11398 | SourceCodester Hotel and Lodge Management System 1.0 Profile Page /profile.php image unrestricted upload

A vulnerability classified as critical was found in SourceCodester Hotel and Lodge Management System 1.0. The impacted element is an unknown function of the file /profile.php of the component Profile Page. Executing manipulation of the argument image can lead to unrestricted upload.

The identification of this vulnerability is CVE-2025-11398. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More