| Titel | sourcecodester Web-based Pharmacy Product Management System using PHP and MySQL Database 1.0 RCE |
|---|
| Beschreibung | The add-admin route has file uploads, which cause arbitrary file uploads due to improper detection, resulting in an RCE |
|---|
| Quelle | ⚠️ https://github.com/6s6-630/CVE/blob/main/yaofang.md |
|---|
| Benutzer | puppy_6s6 (UID 82933) |
|---|
| Einreichung | 01.04.2025 17:09 (vor 1 Jahr) |
|---|
| Moderieren | 03.04.2025 21:06 (2 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 303271 [SourceCodester Web-based Pharmacy Product Management System 1.0 Create User Page /add-admin.php Avatar erweiterte Rechte] |
|---|
| Punkte | 14 |
|---|