A vulnerability was detected in Campcodes Online Job Finder System 1.0. The impacted element is an unknown function of the file /eris/applicationform.php. The manipulation of the argument picture results in unrestricted upload. It is possible to launch the attack remotely. The exploit is now public and may be used.
References
| Link | Resource |
|---|---|
| https://github.com/HAO-RAY/HCR-CVE/issues/6 | Exploit Third Party Advisory Issue Tracking |
| https://vuldb.com/?ctiid.323881 | Permissions Required VDB Entry |
| https://vuldb.com/?id.323881 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.648014 | Third Party Advisory VDB Entry |
| https://www.campcodes.com/ | Product |
| https://github.com/HAO-RAY/HCR-CVE/issues/6 | Exploit Third Party Advisory Issue Tracking |
Configurations
History
20 Sep 2025, 02:52
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Campcodes online Job Finder System
Campcodes |
|
| CPE | cpe:2.3:a:campcodes:online_job_finder_system:1.0:*:*:*:*:*:*:* | |
| References | () https://github.com/HAO-RAY/HCR-CVE/issues/6 - Exploit, Third Party Advisory, Issue Tracking | |
| References | () https://vuldb.com/?ctiid.323881 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.323881 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.648014 - Third Party Advisory, VDB Entry | |
| References | () https://www.campcodes.com/ - Product |
15 Sep 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/HAO-RAY/HCR-CVE/issues/6 - |
15 Sep 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-09-15 14:15
Updated : 2025-09-20 02:52
NVD link : CVE-2025-10447
Mitre link : CVE-2025-10447
CVE.ORG link : CVE-2025-10447
JSON object : View
Products Affected
campcodes
- online_job_finder_system