CVE-2025-10480 is a medium-severity vulnerability identified in version 1.0 of the SourceCodester Online Student File Management System. The vulnerability resides in the /save_file.php script, where an unrestricted file upload flaw allows an attacker to upload arbitrary files without proper validation or restrictions. This flaw can be exploited remotely without requiring user interaction or prior authentication, as indicated by the CVSS vector (AV:N/AC:L/AT:N/UI:N/PR:L). The vulnerability impacts confidentiality, integrity, and availability to a limited extent, as the attacker can potentially upload malicious files such as web shells or malware, leading to unauthorized code execution, data compromise, or service disruption. The CVSS 4.0 base score of 5.3 reflects a medium severity, considering the low complexity of the attack and the limited scope of affected components. Although no public exploits are currently known to be in the wild, the exploit code has been made publicly available, increasing the risk of exploitation. The vulnerability does not require user interaction but does require low privileges (PR:L), implying that an attacker might need some level of access or a compromised account to exploit the flaw. The absence of patch links suggests that a vendor fix may not yet be available, emphasizing the need for mitigation through other means.

For European organizations, especially educational institutions and entities using the SourceCodester Online Student File Management System version 1.0, this vulnerability poses a tangible risk. Exploitation could lead to unauthorized file uploads, resulting in remote code execution or deployment of malware within the affected environment. This could compromise sensitive student data, disrupt educational services, and damage organizational reputation. Given the nature of the product, which manages student files, confidentiality breaches could expose personal identifiable information (PII) and academic records, potentially violating GDPR regulations. The medium severity score indicates a moderate risk, but the ease of exploitation and public availability of exploit code increase the urgency for European organizations to address this vulnerability promptly. The impact is heightened in environments where the system is internet-facing or lacks additional security controls such as web application firewalls or strict access management.

1. Immediate mitigation should include restricting access to the /save_file.php endpoint through network segmentation or firewall rules to limit exposure to trusted users only. 2. Implement strict input validation and file type restrictions at the application level to prevent uploading of executable or malicious files. 3. Employ web application firewalls (WAFs) with custom rules to detect and block suspicious file upload attempts targeting this endpoint. 4. Monitor logs for unusual file upload activities or access patterns to detect potential exploitation attempts early. 5. If possible, disable or remove the vulnerable file upload functionality until a vendor patch or update is released. 6. Conduct a thorough review of user privileges to ensure that only necessary accounts have upload permissions, minimizing the risk posed by low-privilege exploitation. 7. Educate system administrators and users about the vulnerability and encourage prompt reporting of anomalies. 8. Regularly check for vendor updates or patches addressing this vulnerability and apply them as soon as they become available.