CVE-2026-2183

A security vulnerability has been detected in Great Developers Certificate Generation System up to 97171bb0e5e22e52eacf4e4fa81773e5f3cffb73. This affects an unknown part of the file /restructured/csv.php. The manipulation leads to unrestricted upload. Remote exploitation of the attack is possible. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. The code repository of the project has not been active for many years.

CVSS v3 6.3 MEDIUM
CVSS v2.0 6.5 MEDIUM

6.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

6.5^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability : 8.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://github.com/lakshayyverma/CVE-Discovery/blob/main/Certificate.md	Exploit Third Party Advisory
https://vuldb.com/?ctiid.344886	Permissions Required VDB Entry
https://vuldb.com/?id.344886	Third Party Advisory VDB Entry
https://vuldb.com/?submit.749713	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

cpe:2.3:a:greatdevelopers:certificate:*:*:*:*:*:*:*:*

History

24 Feb 2026, 14:45

Type	Values Removed	Values Added
First Time		Greatdevelopers certificate Greatdevelopers
Summary		(es) Una vulnerabilidad de seguridad ha sido detectada en el Sistema de Generación de Certificados de Great Developers hasta 97171bb0e5e22e52eacf4e4fa81773e5f3cffb73. Esto afecta una parte desconocida del archivo /restructured/csv.PHP. La manipulación conduce a una carga sin restricciones. La explotación remota del ataque es posible. Este producto sigue un enfoque de lanzamiento continuo para la entrega continua, por lo que no se proporcionan detalles de la versión para las versiones afectadas o actualizadas. El repositorio de código del proyecto no ha estado activo durante muchos años.
CPE		cpe:2.3:a:greatdevelopers:certificate::::::::
References	~~() https://github.com/lakshayyverma/CVE-Discovery/blob/main/Certificate.md -~~	() https://github.com/lakshayyverma/CVE-Discovery/blob/main/Certificate.md - Exploit, Third Party Advisory
References	~~() https://vuldb.com/?ctiid.344886 -~~	() https://vuldb.com/?ctiid.344886 - Permissions Required, VDB Entry
References	~~() https://vuldb.com/?id.344886 -~~	() https://vuldb.com/?id.344886 - Third Party Advisory, VDB Entry
References	~~() https://vuldb.com/?submit.749713 -~~	() https://vuldb.com/?submit.749713 - Third Party Advisory, VDB Entry

08 Feb 2026, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-02-08 20:15

Updated : 2026-02-24 14:45

NVD link : CVE-2026-2183

Mitre link : CVE-2026-2183

CVE.ORG link : CVE-2026-2183

JSON object : View

Products Affected

greatdevelopers

certificate

CWE

CWE-284

Improper Access Control

CWE-434

Unrestricted Upload of File with Dangerous Type

6.3 /10