| Título | Sourcecodester Mobile Management Store 1.0 RCE via Arbitrary File Upload |
|---|
| Descripción | The upload avatar functionality in the admin page is vulnerable to Arbitrary File Upload that lead to Remote Code Execution. This allow the attacker to execute OS Commands using malicious PHP script. |
|---|
| Fuente | ⚠️ https://github.com/vanitashtml/CVE-Dumps/blob/main/RCE%20via%20Arbitrary%20File%20Upload%20in%20Mobile%20Management%20Store.md |
|---|
| Usuario | rjavenido22 (UID 64261) |
|---|
| Sumisión | 2024-03-01 14:04 (hace 2 años) |
|---|
| Moderación | 2024-03-02 23:15 (1 day later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 255501 [SourceCodester Online Mobile Management Store 1.0 /classes/Users.php img escalada de privilegios] |
|---|
| Puntos | 16 |
|---|