DNA View

Critical Severity Vulnerability

This vulnerability has been rated as Critical severity. Immediate action is recommended.

CVE-2025-66802

Critical

Low Medium High Critical

9.8

CVSS Score

Published: Jan 12, 2026

Last Modified: Jan 13, 2026

Vulnerability Description

Sourcecodester Covid-19 Contact Tracing System 1.0 is vulnerable to RCE (Remote Code Execution). The application receives a reverse shell (php) into imagem of the user enabling RCE.

CVSS Metrics

Common Vulnerability Scoring System

Vector String:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

References & Resources

https://feedly.com/cve/CVE-2022-2746
cve@mitre.org
https://github.com/mtgsjr/CVE-2025-66802
cve@mitre.org

Severity Details

9.8

out of 10.0

Critical

Key Information

Published Date: January 12, 2026

External Resources

NIST NVD

National Vulnerability Database

CVE Details

Detailed vulnerability info

MITRE CVE

Official CVE record

CVE Vulnerabilities

Posts & Pages