| Titolo | Sourcecodester Complete E-Commerce Site in PHP/MySQLi V1.0 unrestricted uploads |
|---|
| Descrizione | Yue Shuning from Huazhong University of Science and Technology has discovered a vulnerability classified as critical in Complete E-Commerce Site in PHP/MySQLi V1.0. The function upload is affected. This operation will result in unrestricted uploads. Remote attacks can cause RCE. |
|---|
| Fonte | ⚠️ https://github.com/wkeyi0x1/vul-report/issues/4 |
|---|
| Utente | Shuning Yue (UID 66796) |
|---|
| Sottomissione | 20/03/2024 20:16 (2 anni fa) |
|---|
| Moderazione | 21/03/2024 02:58 (7 hours later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 257544 [SourceCodester Complete E-Commerce Site 1.0 /admin/users_photo.php photo escalationi di privilegi] |
|---|
| Punti | 17 |
|---|