📄 Description (English)
A vulnerability was determined in mjperpinosa stumasy. The impacted element is an unknown function of the file application/PHP/objects/profiles/change_profile_image.php. Executing a manipulation of the argument pr_profile_image can lead to unrestricted upload. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases. The project was informed of the problem early through an issue report but has not responded yet.
🤖 AI Executive Summary
CVE-2026-10807 is a medium-severity unrestricted file upload vulnerability in mjperpinosa stumasy affecting the profile image change functionality. The vulnerability allows remote attackers to upload arbitrary files by manipulating the pr_profile_image parameter, potentially leading to remote code execution or malware distribution. No patch is currently available, and the vendor has not responded to disclosure, requiring immediate compensating controls.
📄 Description (Arabic)
🤖 AI Intelligence Analysis Analyzed: Jun 4, 2026 18:17
🇸🇦 Saudi Arabia Impact Assessment
This vulnerability poses significant risk to Saudi organizations using mjperpinosa stumasy, particularly in: Government agencies (NCA, CITC) using this platform for citizen services; Banking sector (SAMA-regulated institutions) if integrated into customer portals; Healthcare providers (MOH) managing patient profiles; Telecommunications operators (STC, Mobily) for subscriber management; and Energy sector (ARAMCO, SEC) for employee/contractor portals. The unrestricted upload capability could enable attackers to deploy malware, establish persistence, or exfiltrate sensitive data from these critical sectors.
🏢 Affected Saudi Sectors
Government
Banking
Healthcare
Energy
Telecommunications
Education
🎯 MITRE ATT&CK Techniques
⚖️ Saudi Risk Score (AI)
7.2
/ 10.0
🔧 Remediation Steps (English)
Immediate Actions:
1. Identify all instances of mjperpinosa stumasy in your environment and isolate affected systems from production networks if possible
2. Implement Web Application Firewall (WAF) rules to block requests containing 'pr_profile_image' parameter manipulation
3. Restrict file upload functionality to whitelisted MIME types (JPEG, PNG only) and validate file signatures
4. Implement strict file upload directory permissions (no execute rights)
5. Monitor upload directories for suspicious file activity
Compensating Controls:
6. Disable profile image upload feature entirely until patch is available
7. Implement input validation: reject uploads >5MB, enforce strict filename sanitization
8. Store uploads outside web root or in read-only storage
9. Implement antivirus scanning on all uploaded files
10. Enable detailed logging of all upload attempts with IP tracking
11. Conduct immediate code review of change_profile_image.php for similar vulnerabilities
Detection Rules:
- Monitor for POST requests to /application/PHP/objects/profiles/change_profile_image.php
- Alert on pr_profile_image parameters containing executable extensions (.php, .exe, .sh)
- Track file uploads with mismatched MIME types and extensions
- Monitor upload directory for newly created executable files
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:
1. تحديد جميع نسخ mjperpinosa stumasy في بيئتك وعزل الأنظمة المتأثرة عن شبكات الإنتاج إن أمكن
2. تطبيق قواعد جدار حماية تطبيقات الويب (WAF) لحجب الطلبات التي تحتوي على معالجة معامل pr_profile_image
3. تقييد وظيفة تحميل الملفات على أنواع MIME المسموحة (JPEG و PNG فقط) والتحقق من توقيعات الملفات
4. تطبيق أذونات صارمة على دليل التحميل (بدون حقوق التنفيذ)
5. مراقبة أدلة التحميل للنشاط المريب
الضوابط التعويضية:
6. تعطيل ميزة تحميل صورة الملف الشخصي بالكامل حتى توفر التصحيح
7. تطبيق التحقق من الإدخال: رفض التحميلات >5MB، فرض تنظيف اسم الملف الصارم
8. تخزين التحميلات خارج جذر الويب أو في التخزين للقراءة فقط
9. تطبيق فحص مكافحة الفيروسات على جميع الملفات المحملة
10. تفعيل تسجيل مفصل لجميع محاولات التحميل مع تتبع IP
11. إجراء مراجعة فورية للأكواد في change_profile_image.php للبحث عن ثغرات مماثلة
قواعد الكشف:
- مراقبة طلبات POST إلى /application/PHP/objects/profiles/change_profile_image.php
- تنبيهات على معاملات pr_profile_image التي تحتوي على امتدادات قابلة للتنفيذ (.php, .exe, .sh)
- تتبع تحميلات الملفات ذات أنواع MIME والامتدادات غير المتطابقة
- مراقبة دليل التحميل للملفات القابلة للتنفيذ المنشأة حديثاً
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
ECC 2024 A.14.2.1 - Information security requirements in supplier relationships
ECC 2024 A.12.6.1 - Management of technical vulnerabilities
ECC 2024 A.12.2.1 - Establishment of information security baselines
🔵 SAMA CSF
SAMA CSF ID.BE-1 - Business Environment
SAMA CSF PR.DS-6 - Data is protected from unauthorized access
SAMA CSF DE.CM-1 - The network is monitored to detect potential cybersecurity events
🟡 ISO 27001:2022
ISO 27001:2022 A.8.1.1 - Inventory of information and other assets
ISO 27001:2022 A.12.6.1 - Management of technical vulnerabilities
ISO 27001:2022 A.14.2.1 - Supplier security requirements
🟣 PCI DSS v4.0.1
PCI DSS 6.2 - Ensure all system components and software are protected from known vulnerabilities
PCI DSS 6.5.8 - Improper access control (file upload vulnerabilities)
🔗 References & Sources 6
🔗
🔗
🔗
🔗
🔗
🔗
https://github.com/mjperpinosa/stumasy/
cna@vuldb.com
https://github.com/mjperpinosa/stumasy/issues/3
cna@vuldb.com
https://vuldb.com/cve/CVE-2026-10807
cna@vuldb.com
https://vuldb.com/submit/831551
cna@vuldb.com
https://vuldb.com/vuln/368255
cna@vuldb.com
https://vuldb.com/vuln/368255/cti
cna@vuldb.com