| Titel | SourceCodester Real Estate Property Listing App Using PHP and MySQL with Source Code 1 Unrestricted Upload |
|---|
| Beschreibung | A vulnerability has been discovered in the SourceCodester Real Estate Property Listing App Using PHP and MySQL with Source Code. The affected feature is the file upload functionality in the `/admin/property.php` file. Attackers can upload arbitrary files using the `image` parameter, potentially gaining a shell . |
|---|
| Quelle | ⚠️ https://github.com/zzdzz7/cve/issues/2 |
|---|
| Benutzer | zzdzz (UID 93061) |
|---|
| Einreichung | 28.11.2025 17:33 (vor 7 Monaten) |
|---|
| Moderieren | 11.12.2025 10:14 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 335871 [SourceCodester Real Estate Property Listing App 1.0 /admin/property.php image erweiterte Rechte] |
|---|
| Punkte | 19 |
|---|