Soumettre #674562: Code-Projects Simple Food Ordering System 1.0 Unrestricted Upload Vulnerabilityinformation

TitreCode-Projects Simple Food Ordering System 1.0 Unrestricted Upload Vulnerability
DescriptionDuring the security assessment of "Simple Food Ordering System", I detected a critical file upload vulnerability in the "addproduct.php" file. This vulnerability stems from inadequate validation mechanisms for uploaded files, particularly the lack of proper file type verification, content checking, and extension filtering. Attackers can bypass existing restrictions to upload malicious files, potentially gaining unauthorized access to the server, executing arbitrary commands, and compromising the entire system. Immediate remediation is essential to ensure system security.
La source⚠️ https://github.com/tinggeogle01-lang/cve/issues/1
Utilisateur
 passed (UID 91609)
Soumission14/10/2025 08:28 (il y a 9 mois)
Modérer28/10/2025 01:08 (14 days later)
StatutAccepté
Entrée VulDB330214 [code-projects Simple Food Ordering System 1.0 /addproduct.php photo élévation de privilèges]
Points20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!