CVE-2025-13185 is a vulnerability identified in Bdtask's News365 product, versions 7.0.0 through 7.0.3. The issue arises from an unrestricted file upload flaw in the /admin/dashboard/profile endpoint, specifically through manipulation of the profile_image and banner_image parameters. This flaw allows an authenticated user with high privileges to upload arbitrary files without proper validation or restrictions. The vulnerability is remotely exploitable and does not require user interaction, but it does require the attacker to have high-level privileges, such as an administrator account. The CVSS 4.0 score is 5.1 (medium), reflecting that while the attack vector is network-based and easy to access, the prerequisite of high privileges limits the scope. The impact on confidentiality, integrity, and availability is limited but non-negligible, as malicious files could be uploaded to execute code, deface content, or disrupt service. The vendor was contacted but has not issued any patches or responses, and no known exploits are currently active in the wild, though exploit code has been publicly released. This vulnerability highlights a failure in input validation and access control mechanisms within the file upload functionality of the News365 administrative interface.

For European organizations using Bdtask News365, this vulnerability poses a moderate risk primarily to administrative systems managing news or content platforms. If exploited, attackers with administrative access could upload malicious files, potentially leading to unauthorized code execution, defacement, or service disruption. This could compromise the confidentiality of sensitive information, integrity of published content, and availability of the platform. Given that the vulnerability requires high privileges, the risk is somewhat mitigated by existing access controls; however, insider threats or compromised admin credentials could lead to exploitation. The lack of vendor response and patches increases the window of exposure. Organizations in sectors relying heavily on content management systems, such as media companies, government communication departments, and educational institutions, may face operational and reputational damage if targeted.

1. Restrict administrative access to the News365 platform using network segmentation and VPNs to limit exposure to trusted users only. 2. Enforce strong authentication mechanisms for admin accounts, including multi-factor authentication (MFA), to reduce the risk of credential compromise. 3. Implement strict file upload validation at the web server or application firewall level, such as limiting allowed file types, scanning uploads for malware, and blocking executable file extensions. 4. Monitor logs for unusual file upload activity or changes to profile_image/banner_image parameters. 5. Regularly audit admin accounts and revoke unnecessary privileges to minimize the number of users with high-level access. 6. Consider deploying a web application firewall (WAF) with custom rules to detect and block attempts to exploit this vulnerability. 7. If possible, isolate the News365 administrative interface from the public internet or restrict access by IP address. 8. Prepare an incident response plan specifically for potential exploitation of this vulnerability, including backup and recovery procedures. 9. Engage with Bdtask or community forums to track any forthcoming patches or updates addressing this issue.