File Upload Vulnerability in Code-Projects Computer Book Store by Code-Projects
CVE-2025-69559

9.8CRITICAL

Key Information:

Vendor: Code-Projects
Status: Computer Book Store
Vendor: CVE Published:; 27 January 2026

🔔 Create Code-Projects Vulnerability Alert

What is CVE-2025-69559?

The Code-Projects Computer Book Store 1.0 is vulnerable to a file upload flaw in the admin_add.php file. This vulnerability allows unauthorized users to upload malicious files, potentially compromising the security of the application. An attacker can exploit this weakness to gain unauthorized access, execute code, or further manipulate the system, posing significant risks to the integrity and confidentiality of user data.

References

https://gitee.com/Z_180yc/zyy/issues/IDBY27

https://gist.github.com/lih28984-commits/cd3a275dfd9c92a7...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 27, 2026
Vulnerability Reserved
Jan 9, 2026

CVE-2025-69559 Data

JSON