Vulnerability Details CVE-2025-66802
Sourcecodester Covid-19 Contact Tracing System 1.0 is vulnerable to RCE (Remote Code Execution). The application receives a reverse shell (php) into imagem of the user enabling RCE.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.5%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2025-66802
-
cpe:2.3:a:covid-19_contact_tracing_system_project:covid-19_contact_tracing_system:1.0