| शीर्षक | Human Resource Management System v1.0 - [Bypass] Unrestricted File Upload leads to RCE |
|---|
| विवरण | The web application Human Resource Management System v1.0 is vulnerable to Unrestricted file upload which is a bypass of the filter on upload functionality. The application is expecting the content-type as : 'image/png, image/jpeg, image/jpg'. If the expected content type is not in the request and the uploaded file is not image file then application throws error as 'Invalid Image! '. And if we upload the PHP file with content-type set to 'image/jpg' then the file restriction filter gets bypassed and the reverse shell file gets uploaded. After uploading the php file gets stored in image directory. Visiting the directory or refreshing the page executes the reverse shell.
The /employeeview.php and /employeeadd.php is vulnerable to file upload filter bypass. |
|---|
| स्रोत | ⚠️ https://www.sourcecodester.com/php/15740/human-resource-management-system-project-php-and-mysql-free-source-code.html |
|---|
| उपयोगकर्ता | l3v1ath0n (UID 33329) |
|---|
| सबमिशन | 11/10/2022 08:58 PM (4 साल पहले) |
|---|
| संयम | 11/10/2022 09:12 PM (14 minutes later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 210559 [SourceCodester Human Resource Management System 1.0 Image File /employeeview.php अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|