| शीर्षक | rickxy Hospital-Management-System 1.0 Unrestricted Upload |
|---|
| विवरण | A critical arbitrary file upload vulnerability was discovered in the "/backend/admin/his_admin_account.php" file of rickxy Hospital-Management-System v1.0. Unauthenticated attackers can craft a direct profile update POST request and inject a malicious PHP payload (e.g., webshell) instead of an image via the "ad_dpic" parameter. The uploaded shell can then be directly accessed and executed by navigating to the upload directory. This leads to Remote Code Execution (RCE), comprehensive system control, unauthorized database access, and potential server takeover. Exploitation requires no authentication or prior access to the system. |
|---|
| स्रोत | ⚠️ https://github.com/freeloader9527/cve/issues/2 |
|---|
| उपयोगकर्ता | wacool (UID 72886) |
|---|
| सबमिशन | 28/03/2026 06:28 PM (2 महीनों पहले) |
|---|
| संयम | 19/04/2026 04:04 PM (22 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 358237 [rickxy Hospital Management System तक 88a4290d957dc5bdde8a56e5ad451ad14f7f90f4 his_admin_account.php ad_dpic अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|