| Titel | code-projects Online Lot Reservation System 1.0 Unrestricted Upload |
|---|
| Beschreibung | A vulnerability has been found in Online Lot Reservation System 1.0 and classified as critical. This vulnerability affects an unknown function of the file activity.php. The manipulation of the argument directory in combination with insufficient validation of uploaded files leads to unrestricted upload and path traversal. This allows an attacker to upload arbitrary files to unintended locations and potentially execute malicious code on the server. The attack can be initiated remotely. |
|---|
| Quelle | ⚠️ https://github.com/zzk6th/cve/issues/3 |
|---|
| Benutzer | z0ng (UID 96775) |
|---|
| Einreichung | 09.04.2026 14:00 (vor 2 Monaten) |
|---|
| Moderieren | 26.04.2026 21:21 (17 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 359732 [code-projects Online Lot Reservation System 1.0 /activity.php directory erweiterte Rechte] |
|---|
| Punkte | 20 |
|---|