| Título | code-projects Online Lot Reservation System 1.0 Unrestricted Upload |
|---|
| Descripción | A vulnerability has been found in Online Lot Reservation System 1.0 and classified as critical. This vulnerability affects an unknown function of the file activity.php. The manipulation of the argument directory in combination with insufficient validation of uploaded files leads to unrestricted upload and path traversal. This allows an attacker to upload arbitrary files to unintended locations and potentially execute malicious code on the server. The attack can be initiated remotely. |
|---|
| Fuente | ⚠️ https://github.com/zzk6th/cve/issues/3 |
|---|
| Usuario | z0ng (UID 96775) |
|---|
| Sumisión | 2026-04-09 14:00 (hace 2 meses) |
|---|
| Moderación | 2026-04-26 21:21 (17 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 359732 [code-projects Online Lot Reservation System 1.0 /activity.php directory escalada de privilegios] |
|---|
| Puntos | 20 |
|---|