Title | https://www.sourcecodester.com Prison Management System v1.0 remote command/code execute |
---|
Description | A critical vulnerability has been discovered in the Online Courseware. This affects the add-admin.php file. No checks are made on the contents and suffixes of files uploaded by users, allowing attackers to upload php files containing malicious code and perform remote command execution. |
---|
Source | ⚠️ https://github.com/fubxx/CVE/blob/main/PrisonManagementSystemRCE2.md |
---|
User | LI YU (ID 67398) |
---|
Submission | 2024年04月07日 14:35 (1 month ago) |
---|
Moderation | 2024年04月07日 15:14 (39 minutes later) |
---|
Status | 承諾済み |
---|
VulDB Entry | 259631 |
---|