exploitDog

CVE-2025-8435

Опубликовано: 01 авг. 2025

Источник: nvd

CVSS3: 7.3

CVSS2: 7.5

EPSS Низкий

Описание

A vulnerability was found in code-projects Online Movie Streaming 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin-control.php. The manipulation of the argument ID leads to missing authorization. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Ссылки

https://code-projects.org/
Product
https://github.com/i-Corner/cve/issues/15
Exploit
Issue Tracking
Third Party Advisory
https://vuldb.com/?ctiid.318463
Permissions Required
VDB Entry
https://vuldb.com/?id.318463
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:anisha:online_movie_streaming:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00051

Низкий

7.3 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-862

Связанные уязвимости

GHSA-wjw2-c8pq-fw6m

CVSS3: 7.3

github

30 дней назад

A vulnerability was found in code-projects Online Movie Streaming 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin-control.php. The manipulation of the argument ID leads to missing authorization. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 16%

0.00051

Низкий

7.3 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-862