CVE-2025-13574 | code-projects Online Bidding System 1.0 addcategory.php categoryadd catimage unrestricted upload

A vulnerability marked as critical has been reported in code-projects Online Bidding System 1.0. This issue affects the function categoryadd of the file /administrator/addcategory.php. This manipulation of the argument catimage causes unrestricted upload.

This vulnerability is tracked as CVE-2025-13574. The attack is possible to be carried out remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More