| शीर्षक | Human Resource Management System 1.0 Remote Code Execution (Unauthenticated) |
|---|
| विवरण | Description: Vulnerability was found in SourceCodester Book Store Management System 1.0. This vulnerability allows an unauthenticated attacker bypass the upload file restriction and execute arbitrary code via a crafted PHP file.
The product(s): https://www.sourcecodester.com/php/15740/human-resource-management-system-project-php-and-mysql-free-source-code.html
Affected component(s): /hrm/controller/employee.php
Proof of Concept:
1. Bypass File upload restriction
Bypass check type using Content-Type: image/jpg in the upload form.
2. Upload web shell without authentication
3. Find the uploaded web shell file and get RCE
Go to /hrm/image/ and get web shell name and get remote code execution |
|---|
| स्रोत | ⚠️ https://github.com/leecybersec/bug-report/tree/main/sourcecodester/oretnom23/hrm/bypass-fileupload-rce |
|---|
| उपयोगकर्ता | leecybersec (UID 36724) |
|---|
| सबमिशन | 01/12/2022 06:50 PM (4 साल पहले) |
|---|
| संयम | 03/12/2022 08:55 AM (2 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 214769 [SourceCodester Human Resource Management System 1.0 Content-Type employee.php pfimg अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|