| Titolo | Projectworlds Online Admission System in PHP 1.0 Remote Code Execution |
|---|
| Descrizione | An authenticated Remote Code Execution was found in Online Admission System in PHP. By allowing any file type to be uploaded on the server, an attacker can be able to upload malicious files in the server and execute them to gain foothold. |
|---|
| Fonte | ⚠️ https://github.com/keru6k/Online-Admission-System-RCE-PoC |
|---|
| Utente | keroomi (UID 62127) |
|---|
| Sottomissione | 22/01/2024 09:28 (2 anni fa) |
|---|
| Moderazione | 22/01/2024 12:15 (3 hours later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 251699 [Project Worlds Online Admission System 1.0 documents.php escalationi di privilegi] |
|---|
| Punti | 16 |
|---|