| タイトル | SIMPLE ONLINE HOTEL RESERVATION SYSTEM has a file upload (RCE) vulnerability |
|---|
| 説明 | SIMPLE ONLINE HOTEL RESERVATION SYSTEM has a file upload (RCE) vulnerability, vulnerability exists in add_room.php file, can upload any format of the file, and execute any code, the function of the file name timestamp confusion, but can be predicted, can be used by malicious users to upload any file execution code, access to the server.
Souce Download:https://code-projects.org/simple-online-hotel-reservation-system-in-php-with-source-code/ |
|---|
| ソース | ⚠️ https://github.com/sincere9/Bug-Hub/blob/main/SIMPLE%20ONLINE%20HOTEL%20RESERVATION%20SYSTEM/SIMPLE%20ONLINE%20HOTEL%20RESERVATION%20SYSTEM%20has%20a%20file%20upload%20(RCE)%20vulnerability.pdf |
|---|
| ユーザー | sincere (UID 43254) |
|---|
| 送信 | 2023年03月22日 03:45 (3 年 ago) |
|---|
| モデレーション | 2023年03月22日 11:07 (7 hours later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 223554 [code-projects Simple Online Hotel Reservation System 1.0 add_room.php 特権昇格] |
|---|
| ポイント | 20 |
|---|