Soumettre #385896: itsourcecode Airline Reservation System 1.0 FileUploadinformation

Titreitsourcecode Airline Reservation System 1.0 FileUpload
DescriptionIn the admin/admin_class.php page, the save_settings method can be used to upload files. However, it does not consider the file type, allowing attackers to upload PHP files through /admin/ajax.php?action=save_settings.
La source⚠️ https://github.com/DeepMountains/zzz/blob/main/CVE1-5.md
Utilisateur
 quad (UID 73025)
Soumission05/08/2024 10:05 (il y a 2 ans)
Modérer05/08/2024 17:45 (8 hours later)
StatutAccepté
Entrée VulDB273626 [itsourcecode Airline Reservation System 1.0 admin/admin_class.php save_settings img élévation de privilèges]
Points17

PrécédentAperçuSuivant

Might our Artificial Intelligence support you?

Check our Alexa App!