← back
CVE-2026-2183

Great Developers Certificate Generation System csv.php unrestricted upload

CVSS 5.3 MEDIUMEPSS 0.2%CWE-284CWE-434
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.3EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
08 Feb 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A security vulnerability has been detected in Great Developers Certificate Generation System up to 97171bb0e5e22e52eacf4e4fa81773e5f3cffb73. This affects an unknown part of the file /restructured/csv.php. The manipulation leads to unrestricted upload. Remote exploitation of the attack is possible. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. The code repository of the project has not been active for many years.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X
Affected products
Great Developers · Certificate Generation System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/lakshayyverma/CVE-Discovery/blob/main/Certificate.mdhttps://vuldb.com/?ctiid.344886https://vuldb.com/?id.344886https://vuldb.com/?submit.749713