GCVE - cpe:2.3:a:carmelo:computer_laboratory

Approved changes feed: RSS · Atom

cpe:2.3:a:carmelo:computer_laboratory_system:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor	Carmelo (`6b035a27-935d-5e7e-afc6-e62cb1b98eda`)
Product	Computer Laboratory System (`7ea95b6d-ab92-5896-81bc-8ec7c3c5db6e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-60307`	vulnerable	2026-06-03 15:07:56.022751	Details available code-projects Computer Laboratory System 1.0 has a SQL injection vulnerability, where entering a universal password in the Password field on the login page can bypass login attempts. Published: 2025-10-10T00:00:00.000Z Updated: 2025-10-15T17:24:49.941Z Open on db.gcve.eu Reference links http://code-projects.com https://github.com/Chen1-Boop/CVE/blob/main/CVE-2025-60307.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-56295`	vulnerable	2026-06-03 15:04:59.383208	Details available code-projects Computer Laboratory System 1.0 has a file upload vulnerability. Staff can upload malicious files by uploading PHP backdoor files when modifying personal avatar information and use web shell connection tools to obtain server permissions. Published: 2025-09-16T00:00:00.000Z Updated: 2025-09-16T18:32:58.105Z Open on db.gcve.eu Reference links http://code-projects.com https://github.com/Chen1-Boop/CVE/blob/main/CVE-2025-56295.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-14642`	vulnerable	2026-06-03 14:58:55.723095	code-projects Computer Laboratory System technical_staff_pic.php unrestricted upload MEDIUM (4.7) A vulnerability has been found in code-projects Computer Laboratory System 1.0. Impacted is an unknown function of the file technical_staff_pic.php. Such manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-12-14T02:32:06.493Z Updated: 2025-12-15T21:41:08.527Z Open on db.gcve.eu Reference links https://vuldb.com/?id.336375 https://vuldb.com/?ctiid.336375 https://vuldb.com/?submit.707866 https://github.com/Yohane-Mashiro/cve/blob/main/upload%204.md https://code-projects.org/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-14641`	vulnerable	2026-06-03 14:58:55.722552	code-projects Computer Laboratory System admin_pic.php unrestricted upload MEDIUM (4.7) A flaw has been found in code-projects Computer Laboratory System 1.0. This issue affects some unknown processing of the file admin/admin_pic.php. This manipulation of the argument image causes unrestricted upload. The attack may be initiated remotely. The exploit has been published and may be used. Published: 2025-12-14T02:02:07.268Z Updated: 2025-12-15T21:41:49.516Z Open on db.gcve.eu Reference links https://vuldb.com/?id.336374 https://vuldb.com/?ctiid.336374 https://vuldb.com/?submit.707865 https://github.com/Yohane-Mashiro/cve/blob/main/upload%203.md https://code-projects.org/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

carmelo (Carmelo Garcia) Computer Laboratory System 1.0

PURL mappings

Vulnerability references

Contribute