Invia #271228: Projectworlds Online Admission System in PHP 1.0 Remote Code Executioninformazioni

TitoloProjectworlds Online Admission System in PHP 1.0 Remote Code Execution
DescrizioneAn authenticated Remote Code Execution was found in Online Admission System in PHP. By allowing any file type to be uploaded on the server, an attacker can be able to upload malicious files in the server and execute them to gain foothold.
Fonte⚠️ https://github.com/keru6k/Online-Admission-System-RCE-PoC
Utente
 keroomi (UID 62127)
Sottomissione22/01/2024 09:28 (2 anni fa)
Moderazione22/01/2024 12:15 (3 hours later)
StatoAccettato
Voce VulDB251699 [Project Worlds Online Admission System 1.0 documents.php escalationi di privilegi]
Punti16

Want to know what is going to be exploited?

We predict KEV entries!