Submit #312217: Sourcecodester Prison Management System v1.0 remote commandexecuteinfo

Title	Sourcecodester Prison Management System v1.0 remote commandexecute
Description	Prison Management System - File upload on (/Employee/edit-photo.php.Using $_FILES["avatar"]["name"] as the filename on the server can lead to file upload RCE attacks.
Source	⚠️ https://github.com/fubxx/CVE/blob/main/PrisonManagementSystemRCE3.md
User	LI YU (ID 67398)
Submission	08/04/2024 05:46 (1 month ago)
Moderation	08/04/2024 08:55 (3 hours later)
Status	Duplicate
VulDB Entry	259630

Do you want to use VulDB in your project?

Use the official API to access entries easily!