CVE-2023-5277 in Engineers Online Portalالمعلومات

الملخص

بحسب MITRE • 25/10/2023

A vulnerability, which was classified as critical, has been found in SourceCodester Engineers Online Portal 1.0. This issue affects some unknown processing of the file student_avatar.php. The manipulation of the argument change leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-240905 was assigned to this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

مسؤول

VulDB

حجز

29/09/2023

إفشاء

25/10/2023

الاعتدال

تمت الموافقة

إدخال

VDB-240905

استغلال

تحميل

EPSS

0.00822

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!