| Titre | Sourcecodester Mobile Management Store 1.0 RCE via Arbitrary File Upload |
|---|
| Description | The upload avatar functionality in the admin page is vulnerable to Arbitrary File Upload that lead to Remote Code Execution. This allow the attacker to execute OS Commands using malicious PHP script. |
|---|
| La source | ⚠️ https://github.com/vanitashtml/CVE-Dumps/blob/main/RCE%20via%20Arbitrary%20File%20Upload%20in%20Mobile%20Management%20Store.md |
|---|
| Utilisateur | rjavenido22 (UID 64261) |
|---|
| Soumission | 01/03/2024 14:04 (il y a 2 ans) |
|---|
| Modérer | 02/03/2024 23:15 (1 day later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 255501 [SourceCodester Online Mobile Management Store 1.0 /classes/Users.php img élévation de privilèges] |
|---|
| Points | 16 |
|---|