| Titolo | 1000 Projects Portfolio Management System MCA Project v1.0 Unrestricted Upload |
|---|
| Descrizione | During the security review of "Portfolio Management System MCA Project using PHP and MySQL", wangjiawei discovered a critical arbitrary file upload vulnerability in the "/add_achievement_details.php" file. This vulnerability can be exploited without requiring any special permissions. Immediate remedial measures are needed to ensure system security and protect data integrity. |
|---|
| Fonte | ⚠️ https://github.com/dawatermelon/CVE/blob/main/Portfolio%20Management%20System%20MCA%20Project/README2.md |
|---|
| Utente | wangjiawei (UID 79308) |
|---|
| Sottomissione | 24/12/2024 17:56 (1 Anno fa) |
|---|
| Moderazione | 25/12/2024 19:28 (1 day later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 289319 [1000 Projects Portfolio Management System MCA 1.0 add_achievement_details.php ach_certy escalationi di privilegi] |
|---|
| Punti | 20 |
|---|