| عنوان | code-projects Mobile Shop Management System 1.0 Unrestricted Upload |
|---|
| الوصف | The file upload function for product images fails to verify file types or sizes and directly uses filenames provided by users. This creates vulnerabilities that enable malicious file uploads and path traversal attacks. Attackers could upload executable files (such as php files) and then execute malicious code by accessing the upload directory. |
|---|
| المصدر | ⚠️ https://github.com/chen2496088236/CVE/issues/2 |
|---|
| المستخدم | 111ctx (UID 89466) |
|---|
| ارسال | 26/08/2025 12:45 PM (10 أشهر منذ) |
|---|
| الاعتدال | 02/09/2025 03:00 PM (7 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 322188 [code-projects Mobile Shop Management System 1.0 AddNewProduct.php ProductImage تجاوز الصلاحيات] |
|---|
| النقاط | 19 |
|---|