Unrated severityNVD Advisory· Published Apr 22, 2025· Updated Apr 22, 2025
CodeCanyon RISE Ultimate Project Manager Profile Picture save_profile_image resource injection
CVE-2025-3855
Description
A vulnerability was found in CodeCanyon RISE Ultimate Project Manager 3.8.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php/team_members/save_profile_image/ of the component Profile Picture Handler. The manipulation of the argument profile_image_file leads to improper control of resource identifiers. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 3.8.2
- CodeCanyon/RISE Ultimate Project Managerv5Range: 3.8.2
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.