High
CVSS 8.8
Overview
The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
CVE-2025-8323
The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing una...
Risk analysis
This vulnerability is rated 🟠 HIGH.
- CVSS: 8.8 (HIGH)
- Detected tags: rce, upload (tag impact: VERY HIGH)
Recommended actions:
- Patch/upgrade immediately (remote code execution).
- Reduce exposure (WAF/segmentation), minimize attack surface.
- Restrict types/MIME, store outside web root, inspect content.