| Title | 1000 Projects Portfolio Management System MCA Project v1.0 Unrestricted Upload |
|---|
| Description | During the security review of "Portfolio Management System MCA Project using PHP and MySQL", wangjiawei discovered a critical arbitrary file upload vulnerability in the "/update_ach.php" file. This vulnerability can be exploited without requiring any special permissions. Immediate remedial measures are needed to ensure system security and protect data integrity. |
|---|
| Source | ⚠️ https://github.com/dawatermelon/CVE/blob/main/Portfolio%20Management%20System%20MCA%20Project/README5.md |
|---|
| User | wangjiawei (UID 79308) |
|---|
| Submission | 2024年12月25日 08:20 (3 月 ago) |
|---|
| Moderation | 2024年12月25日 19:20 (11 hours later) |
|---|
| Status | 承諾済み |
|---|
| VulDB Entry | 289317 [1000 Projects Portfolio Management System MCA 1.0 /update_ach.php ach_certy 特権昇格] |
|---|
| Points | 19 |
|---|